CVE-2008-2476

EUVD-2008-2471

03.10.2008, 15:07

The IPv6 Neighbor Discovery Protocol (NDP) implementation in (1) FreeBSD 6.3 through 7.1, (2) OpenBSD 4.2 and 4.3, (3) NetBSD, (4) Force10 FTOS before E7.7.1.1, (5) Juniper JUNOS, and (6) Wind River VxWorks 5.x through 6.4 does not validate the origin of Neighbor Discovery messages, which allows remote attackers to cause a denial of service (loss of connectivity) or read private network traffic via a spoofed message that modifies the Forward Information Base (FIB).

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	Primary	9.3 UNKNOWN	NETWORK	MEDIUM		AV:N/AC:M/Au:N/C:C/I:C/A:C

Base Score

CVSS 3.x

EPSS Score

Percentile: 94%

Affected Products (NVD)

Vendor	Product	Version
force10	ftos	*
freebsd	freebsd	6.3
freebsd	freebsd	7.1
juniper	jnos	*
netbsd	netbsd	*
openbsd	openbsd	4.2
openbsd	openbsd	4.3
windriver	vxworks	𝑥 ≤ 6.4
windriver	vxworks	5.5

𝑥

= Vulnerable software versions

Common Weakness Enumeration

CWE-20 - Improper Input Validation
The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

References

ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2008-013.txt.asc

http://secunia.com/advisories/32112

http://secunia.com/advisories/32116

http://secunia.com/advisories/32117

http://secunia.com/advisories/32133

http://secunia.com/advisories/32406

http://security.freebsd.org/advisories/FreeBSD-SA-08:10.nd6.asc

http://securitytracker.com/id?1020968

http://support.apple.com/kb/HT3467

http://www.kb.cert.org/vuls/id/472363

http://www.kb.cert.org/vuls/id/MAPG-7H2RY7

http://www.kb.cert.org/vuls/id/MAPG-7H2S68

http://www.openbsd.org/errata42.html#015_ndp

http://www.openbsd.org/errata43.html#006_ndp

http://www.securityfocus.com/bid/31529

http://www.securitytracker.com/id?1021109

http://www.securitytracker.com/id?1021132

http://www.vupen.com/english/advisories/2008/2750

http://www.vupen.com/english/advisories/2008/2751

http://www.vupen.com/english/advisories/2008/2752

http://www.vupen.com/english/advisories/2009/0633

https://exchange.xforce.ibmcloud.com/vulnerabilities/45601

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5670

https://www.juniper.net/alerts/viewalert.jsp?actionBtn=Search&txtAlertNumber=PSN-2008-09-036&viewMode=view

ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2008-013.txt.asc

http://secunia.com/advisories/32112

http://secunia.com/advisories/32116

http://secunia.com/advisories/32117

http://secunia.com/advisories/32133

http://secunia.com/advisories/32406

http://security.freebsd.org/advisories/FreeBSD-SA-08:10.nd6.asc

http://securitytracker.com/id?1020968

http://support.apple.com/kb/HT3467

http://www.kb.cert.org/vuls/id/472363

http://www.kb.cert.org/vuls/id/MAPG-7H2RY7

http://www.kb.cert.org/vuls/id/MAPG-7H2S68

http://www.openbsd.org/errata42.html#015_ndp

http://www.openbsd.org/errata43.html#006_ndp

http://www.securityfocus.com/bid/31529

http://www.securitytracker.com/id?1021109

http://www.securitytracker.com/id?1021132

http://www.vupen.com/english/advisories/2008/2750

http://www.vupen.com/english/advisories/2008/2751

http://www.vupen.com/english/advisories/2008/2752

http://www.vupen.com/english/advisories/2009/0633

https://exchange.xforce.ibmcloud.com/vulnerabilities/45601

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5670

https://www.juniper.net/alerts/viewalert.jsp?actionBtn=Search&txtAlertNumber=PSN-2008-09-036&viewMode=view