[Forgot Password]
Login  Register Subscribe

30479

 
 

423868

 
 

249461

 
 

909

 
 

195508

 
 

282

 
Paid content will be excluded from the download.


Download | Alert*
CVE
view JSON

CVE-2009-0778Date: (C)2009-03-12   (M)2024-02-22


The icmp_send function in net/ipv4/icmp.c in the Linux kernel before 2.6.25, when configured as a router with a REJECT route, does not properly manage the Protocol Independent Destination Cache (aka DST) in some situations involving transmission of an ICMP Host Unreachable message, which allows remote attackers to cause a denial of service (connectivity outage) by sending a large series of packets to many destination IP addresses within this REJECT route, related to an "rt_cache leak."

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 7.1
Exploit Score: 8.6
Impact Score: 6.9
 
CVSS V2 Metrics:
Access Vector: NETWORK
Access Complexity: MEDIUM
Authentication: NONE
Confidentiality: NONE
Integrity: NONE
Availability: COMPLETE
  
Reference:
SECTRACK-1021958
http://www.securityfocus.com/archive/1/507985/100/0/threaded
SECUNIA-33758
BID-34084
SECUNIA-37471
ADV-2009-3316
RHSA-2009:0326
http://openwall.com/lists/oss-security/2009/03/11/2
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=7c0ecc4c4f8fd90988aab8a95297b9c0038b6160
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.25
http://www.vmware.com/security/advisories/VMSA-2009-0016.html
https://bugzilla.redhat.com/show_bug.cgi?id=485163
linux-kernel-rtcache-dos(49199)
oval:org.mitre.oval:def:10215
oval:org.mitre.oval:def:7867

OVAL    3
oval:org.secpod.oval:def:202177
oval:org.secpod.oval:def:202088
oval:org.secpod.oval:def:500639

© SecPod Technologies