CVE-2001-0323
CVSS6.4
发布时间 :2001-06-02 00:00:00
修订时间 :2016-10-17 22:10:37
NMCO    

[原文]The ICMP path MTU (PMTU) discovery feature in various UNIX systems allows remote attackers to cause a denial of service by spoofing "ICMP Fragmentation needed but Don't Fragment (DF) set" packets between two target hosts, which could cause one host to lower its MTU when transmitting to the other host.


[CNNVD]UNIX ICMP路径MTU (PMTU)目录特征服务拒绝漏洞(CNNVD-200106-019)

        多个UNIX系统中的ICMP路径MTU (PMTU)目录特征存在漏洞。远程攻击者通过欺骗两个目标主机的 "ICMP Fragmentation needed but Don't Fragment (DF) set"数据包打的字服务拒绝,该漏洞可导致一台主机在传输至另一台主机时降低它的MTU。

- CVSS (基础分值)

CVSS分值: 6.4 [中等(MEDIUM)]
机密性影响: [--]
完整性影响: [--]
可用性影响: [--]
攻击复杂度: [--]
攻击向量: [--]
身份认证: [--]

- CPE (受影响的平台与产品)

产品及版本信息(CPE)暂不可用

- OVAL (用于检测的技术细节)

oval:org.mitre.oval:def:19650CRITICAL PATCH UPDATE JULY 2012
*OVAL详细的描述了检测该漏洞的方法,你可以从相关的OVAL定义中找到更多检测该漏洞的技术细节。

- 官方数据库链接

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2001-0323
(官方数据源) MITRE
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2001-0323
(官方数据源) NVD
http://www.cnnvd.org.cn/vulnerability/show/cv_cnnvdid/CNNVD-200106-019
(官方数据源) CNNVD

- 其它链接及资源

http://marc.info/?l=bugtraq&m=97958349623450&w=2
(UNKNOWN)  BUGTRAQ  20010115 ICMP fragmentation required but DF set problems.
http://www.mandriva.com/security/advisories?name=MDVSA-2013:150
(UNKNOWN)  MANDRIVA  MDVSA-2013:150
http://www.oracle.com/technetwork/topics/security/cpujul2012-392727.html
(UNKNOWN)  CONFIRM  http://www.oracle.com/technetwork/topics/security/cpujul2012-392727.html
http://xforce.iss.net/static/5975.php
(VENDOR_ADVISORY)  XF  icmp-pmtu-dos

- 漏洞信息

UNIX ICMP路径MTU (PMTU)目录特征服务拒绝漏洞
中危 未知
2001-06-02 00:00:00 2005-10-20 00:00:00
远程  
        多个UNIX系统中的ICMP路径MTU (PMTU)目录特征存在漏洞。远程攻击者通过欺骗两个目标主机的 "ICMP Fragmentation needed but Don't Fragment (DF) set"数据包打的字服务拒绝,该漏洞可导致一台主机在传输至另一台主机时降低它的MTU。

- 公告与补丁

        

- 漏洞信息

8816
Multiple Vendor ICMP Path MTU Discovery Spoofing DoS
Remote / Network Access Denial of Service, Infrastructure, Input Manipulation
Loss of Availability
Exploit Public

- 漏洞描述

Linux, some variants of BSD, and possibly other operating systems contain a flaw in their TCP/IP stacks that may allow a remote denial of service. The issue is triggered when spoofed "fragmentation required but DF set" ICMP packets (ICMP type 3, code 4) are sent to the machine. This will cause the machine to lower the MTU for connections to the spoofed address, significantly slowing throughput and efficiency, and will result in loss of availability for the platform.

- 时间线

2001-01-15 Unknow
2001-01-15 Unknow

- 解决方案

Currently, there are no known upgrades, patches, or workarounds available to correct this issue.

- 相关参考

- 漏洞作者

 

 

关于SCAP中文社区

SCAP中文社区是国内第一个以SCAP为主题的中文开放社区。了解更多信息,请查阅[关于本站]

版权声明

CVE/CWE/OVAL均为MITRE公司的注册商标,它们的官方数据源均保存在MITRE公司的相关网站