CVE-2008-2476

Name of the Vulnerable Software and Affected Versions: FreeBSD versions 6.3 through 7.1 OpenBSD versions 4.2 and 4.3 NetBSD (affected versions not specified) Force10 FTOS versions prior to E7.7.1.1 Juniper JUNOS (affected versions not specified) Wind River VxWorks versions 5.x through 6.4

Description: The issue concerns the IPv6 Neighbor Discovery Protocol (NDP) implementation, which fails to validate the origin of Neighbor Discovery messages. This allows remote attackers to cause a denial of service, resulting in loss of connectivity, or to read private network traffic by sending a spoofed message that modifies the Forward Information Base (FIB).

Recommendations: For FreeBSD versions 6.3 through 7.1, update to a version outside of this range. For OpenBSD versions 4.2 and 4.3, update to a version outside of this range. For NetBSD, at the moment, there is no information about a newer version that contains a fix for this issue. For Force10 FTOS versions prior to E7.7.1.1, update to version E7.7.1.1 or later. For Juniper JUNOS, at the moment, there is no information about a newer version that contains a fix for this issue. For Wind River VxWorks versions 5.x through 6.4, update to a version outside of this range.