CVE-2006-4572 - Secunia Advisories - Vulnerability Intelligence

CVE Reference: CVE-2006-4572
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2006-4572

Description: ip6_tables in netfilter in the Linux kernel before 2.6.16.31 allows remote attackers to (1) bypass a rule that disallows a protocol, via a packet with the protocol header not located immediately after the fragment header, aka "ip6_tables protocol bypass bug;" and (2) bypass a rule that looks for a certain extension header, via a packet with an extension header outside the first fragment, aka "ip6_tables extension header bypass bug."

CVE Status: Candidate

References: UBUNTU http://www.ubuntu.com/usn/usn-416-1 http://www.ubuntu.com/usn/usn-395-1 SUSE http://www.novell.com/linux/security/advisories/2006_79_kernel.html SAID Secunia Advisory: SA23384 Secunia Advisory: SA22731 Secunia Advisory: SA22762 Secunia Advisory: SA24098 Secunia Advisory: SA25691 Secunia Advisory: SA23474 MLIST http://readlist.com/lists/vger.kernel.org/linux-kernel/55/275979.html MANDRIVA http://frontal2.mandriva.com/security/advisories?name=MDKSA-2006:197 CONFIRM http://www.kernel.org/git/?p=linux/kernel/git/stable/linux-2.6.16.y.git;a=commit;h=6ac62be885810e1f8390f0c3b9d3ee451d3d3f19 http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.16.31 http://www.kernel.org/git/?p=linux/kernel/git/stable/linux-2.6.16.y.git;a=commit;h=0ddfcc96928145d6a6425fdd26dad6abfe7f891d http://www.kernel.org/git/?p=linux%2Fkernel%2Fgit%2Fstable%2Flinux-2.6.16.y.git&a=search&s=CVE-2006-4572 BUGTRAQ http://www.securityfocus.com/archive/1/471457 BID 20955

Return to the previous page.