exploitDog

CVE-2008-4404

Опубликовано: 03 окт. 2008

Источник: nvd

CVSS2: 10

EPSS Низкий

Описание

The IPv6 Neighbor Discovery Protocol (NDP) implementation on IBM zSeries servers does not validate the origin of Neighbor Discovery messages, which allows remote attackers to cause a denial of service (loss of connectivity) or read private network traffic via a spoofed message that modifies the Forward Information Base (FIB), a related issue to CVE-2008-2476.

Ссылки

http://www.kb.cert.org/vuls/id/472363
US Government Resource
http://www.kb.cert.org/vuls/id/MAPG-7H2RZ8
US Government Resource
http://www.kb.cert.org/vuls/id/472363
US Government Resource
http://www.kb.cert.org/vuls/id/MAPG-7H2RZ8
US Government Resource

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:o:ibm:zseries:*:*:*:*:*:*:*:*

EPSS

Процентиль: 81%

0.0153

Низкий

10 Critical

CVSS2

Дефекты

CWE-20

Связанные уязвимости

GHSA-5c8h-74jm-rr6m

github

почти 4 года назад

The IPv6 Neighbor Discovery Protocol (NDP) implementation on IBM zSeries servers does not validate the origin of Neighbor Discovery messages, which allows remote attackers to cause a denial of service (loss of connectivity) or read private network traffic via a spoofed message that modifies the Forward Information Base (FIB), a related issue to CVE-2008-2476.

EPSS

Процентиль: 81%

0.0153

Низкий

10 Critical

CVSS2

Дефекты

CWE-20