CVE-2010-2522

Name of the Vulnerable Software and Affected Versions UMIP version 0.4

Description The issue concerns the mipv6 daemon in UMIP, which fails to verify the origin of netlink messages. This allows local users to spoof netlink socket communication by sending a crafted unicast message.

Recommendations For UMIP version 0.4, consider implementing a verification mechanism to ensure that netlink messages originate from the kernel to prevent spoofing. At the moment, there is no information about a newer version that contains a fix for this issue.