New Search

HP-UX Running IPv6 Remote Denial of Service (DoS) and Unauthorized Access

oval:org.mitre.oval:def:5670

The IPv6 Neighbor Discovery Protocol (NDP) implementation in (1) FreeBSD 6.3 through 7.1 (2) OpenBSD 4.2 and 4.3 (3) NetBSD (4) Force10 FTOS before E7.7.1.1 (5) Juniper JUNOS and (6) Wind River VxWorks 5.x through 6.4 does not validate the origin of Neighbor Discovery messages which allows remote attackers to cause a denial of service (loss of connectivity) or read private network traffic via a spoofed message that modifies the Forward Information Base (FIB).

Family:
unix
Status:
ACCEPTED
Platform(s):
  • HP-UX 11
Class:
vulnerability
Reference(s):
  • CVE-2008-2476
Product(s):