CVE-2016-3707

CVSS v3.1

8.1

High

Vector

AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 3.10.0-327.22.1

Description The issue allows remote attackers to execute SysRq commands via crafted ICMP Echo Request packets. This can be achieved through a brute-force attack to discover a cookie or by exploiting the vulnerability after reading the local icmp echo sysrq file.

Recommendations For Linux kernel versions prior to 3.10.0-327.22.1, update to version 3.10.0-327.22.1 or later to resolve the issue. As a temporary workaround, consider restricting access to the icmp check sysrq function to minimize the risk of exploitation.

Fix

RCE

Improper Access Control

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-284

Related Identifiers

CVE-2016-3707

RHSA-2016:1301

RHSA-2016:1341

RHSA-2016_1301

SUSE-SU-2016:1764-1

SUSE-SU-2016:1937-1

SUSE-SU-2016:1985-1

Affected Products

Linux Kernel

Red Hat

CVE-2016-3707

Weakness Enumeration

Related Identifiers

Affected Products

References · 311