PT-2010-3948 · Seil · Seil/X2+2
Published
2010-08-30
·
Updated
2017-08-17
·
CVE-2010-2363
CVSS v2.0
5.8
Medium
| Vector | AV:N/AC:M/Au:N/C:P/I:P/A:N |
Name of the Vulnerable Software and Affected Versions
SEIL/X1 versions 1.00 through 2.73
SEIL/X2 versions 1.00 through 2.73
SEIL/B1 versions 1.00 through 2.73
Description
The IPv6 Unicast Reverse Path Forwarding (RPF) implementation does not properly drop packets when strict mode is used, which might allow remote attackers to bypass intended access restrictions via a spoofed IP address.
Recommendations
For SEIL/X1 versions 1.00 through 2.73, consider disabling strict mode in the IPv6 Unicast Reverse Path Forwarding (RPF) implementation until a patch is available.
For SEIL/X2 versions 1.00 through 2.73, consider disabling strict mode in the IPv6 Unicast Reverse Path Forwarding (RPF) implementation until a patch is available.
For SEIL/B1 versions 1.00 through 2.73, consider disabling strict mode in the IPv6 Unicast Reverse Path Forwarding (RPF) implementation until a patch is available.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Seil/B1
Seil/X1
Seil/X2