A flaw in the processing of received ICMP errors (ICMP fragment needed and ICMP redirect) in the Linux kernel functionality was found to allow the ability to quickly scan open UDP ports. This flaw allows an off-path remote user to effectively bypass the source port UDP randomization. The highest threat from this vulnerability is to confidentiality and possibly integrity, because software that relies on UDP source port randomization are indirectly affected as well.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
linux linux kernel |
||
fedoraproject fedora 34 |
||
debian debian linux 9.0 |
||
debian debian linux 10.0 |
||
netapp solidfire \\& hci management node - |
||
netapp active iq unified manager - |
||
netapp e-series santricity os controller |
||
netapp solidfire\\, enterprise sds \\& hci storage node - |
||
netapp fas_baseboard_management_controller_firmware - |
||
netapp aff_baseboard_management_controller_firmware - |
||
netapp aff_a700s_firmware - |
||
netapp h700s_firmware - |
||
netapp h700e_firmware - |
||
netapp h500s_firmware - |
||
netapp h410s_firmware - |
||
netapp h500e_firmware - |
||
netapp h300e_firmware - |
||
netapp h300s_firmware - |
||
netapp hci_compute_node_firmware - |
||
oracle communications cloud native core binding support function 22.1.3 |
||
oracle communications cloud native core policy 22.2.0 |
||
oracle communications cloud native core network exposure function 22.1.1 |
Get our weekly newsletter Plus: DNS cache poisoning again, cops probe property conveyancing group's IT outage, Azure hole addressed, and more
In brief Sky has fixed a flaw in six million of its home broadband routers, and it only took the British broadcaster'n'telecoms giant a year to do so, infosec researchers have said. We're told that the vulnerability could be exploited by tricking a subscriber into viewing a malicious webpage. If an attack was successful, their router would fall under the attacker's control, allowing the crook to open up ports to access other devices on the local network, change the LAN's default DNS settings to ...