CVE-2006-6264

Sažetak

Teredo creates trusted peer entries for arbitrary incoming source Teredo addresses, even if the low 32 bits represent an intranet address, which might allow remote attackers to send IPv4 traffic to intranet hosts that use non-RFC1918 addresses, bypassing IPv4 ingress filtering.

Reference

http://www.securityfocus.com/archive/1/452989/100/0/threaded
http://www.securityfocus.com/archive/1/452996/100/0/threaded
http://www.symantec.com/avcenter/reference/Teredo_Security.pdf

CVSS

Base:	7.5
Impact:	6.4
Exploitability:	10.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	PARTIAL	PARTIAL

CVSS vektor

AV:N/AC:L/Au:N/C:P/I:P/A:P

Zadnje važnije ažuriranje

17-10-2018 - 21:47

Objavljeno

04-12-2006 - 11:28