[Forgot Password]
Login  Register Subscribe

30481

 
 

423868

 
 

255116

 
 

909

 
 

198683

 
 

282

Paid content will be excluded from the download.


Download | Alert*
CCE
view XML

CCE-95225-9

Platform: cpe:/o:apple:mac_os_11, cpe:/o:apple:mac_os_x:10.15Date: (C)2020-12-08   (M)2023-07-04



"Don't Forward Source-Routed Packets A source-routed packet attempts to specify the network path that the system should take. If the system is not configured to block the sending of source-routed packets, an attacker can redirect the system's network traffic."


Parameter:

[yes/no]


Technical Mechanism:

Fix:To configure the system to not forward source-routed packets, add the following line to /etc/sysctl.conf: net.inet.ip.sourceroute=0

CCSS Severity:CCSS Metrics:
CCSS Score : 8.2Attack Vector: NETWORK
Exploit Score: 3.9Attack Complexity: LOW
Impact Score: 4.2Privileges Required: NONE
Severity: HIGHUser Interaction: NONE
Vector: AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:HScope: UNCHANGED
 Confidentiality: LOW
 Integrity: NONE
 Availability: HIGH
  

References:
Resource IdReference
SCAP Repo OVAL Definitionoval:org.secpod.oval:def:71695
SCAP Repo OVAL Definitionoval:org.secpod.oval:def:67505


OVAL    2
oval:org.secpod.oval:def:67505
oval:org.secpod.oval:def:71695
XCCDF    2
xccdf_org.secpod_benchmark_general_Mac_OS_11
xccdf_org.secpod_benchmark_general_Mac_OS_X_10_15

© SecPod Technologies