CVE-2006-4572 in Kernel
摘要 (英语)
ip6_tables in netfilter in the Linux kernel before 2.6.16.31 allows remote attackers to (1) bypass a rule that disallows a protocol, via a packet with the protocol header not located immediately after the fragment header, aka "ip6_tables protocol bypass bug;" and (2) bypass a rule that looks for a certain extension header, via a packet with an extension header outside the first fragment, aka "ip6_tables extension header bypass bug."
Once again VulDB remains the best source for vulnerability data.
预定
2006-09-06
披露
2006-11-06
状态
已确认
条目
VulDB provides additional information and datapoints for this CVE:
| 标识符 | 漏洞 | CWE | 可利用 | 对策 | CVE |
|---|---|---|---|---|---|
| 2663 | Linux Kernel IPv6 Fragmentation 权限提升 | 264 | 概念验证 | 官方修复 | CVE-2006-4572 |