PT-2012-1556 · Netbsd Foundation+1 · Netbsd+1

Marc Heuse

Published

2012-02-02

Updated

2020-02-20

CVE-2011-2393

CVSS v2.0

7.8

High

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions FreeBSD (affected versions not specified) NetBSD (affected versions not specified)

Description The issue affects the Neighbor Discovery protocol implementation in the IPv6 stack, allowing remote attackers to cause a denial of service by sending many Router Advertisement messages with different source addresses. This results in CPU consumption and device hang.

Recommendations For FreeBSD, update to a version that includes a fix for this issue. For NetBSD, update to a version that includes a fix for this issue. As a temporary workaround, consider restricting access to the IPv6 stack to minimize the risk of exploitation.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-399

Related Identifiers

CVE-2011-2393

Affected Products

Freebsd

Netbsd

PT-2012-1556 · Netbsd Foundation+1 · Netbsd+1

CVE-2011-2393

Weakness Enumeration

Related Identifiers

Affected Products

References · 7