{ "id": "CVE-2007-2242", "sourceIdentifier": "cve@mitre.org", "published": "2007-04-25T16:19:00.000", "lastModified": "2018-10-16T16:42:44.680", "vulnStatus": "Modified", "descriptions": [ { "lang": "en", "value": "The IPv6 protocol allows remote attackers to cause a denial of service via crafted IPv6 type 0 route headers (IPV6_RTHDR_TYPE_0) that create network amplification between two routers." }, { "lang": "es", "value": "El protocolo IPv6 permite a atacantes remotos provocar una denegaci\u00f3n de servicio mediante cabeceras IPv6 de enrutamiento de tipo 0 (IPV6_RTHDR_TYPE_0) lo cual provoca amplificaci\u00f3n de la red entre dos enrutadores." } ], "metrics": { "cvssMetricV2": [ { "source": "nvd@nist.gov", "type": "Primary", "cvssData": { "version": "2.0", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C", "accessVector": "NETWORK", "accessComplexity": "LOW", "authentication": "NONE", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.8 }, "baseSeverity": "HIGH", "exploitabilityScore": 10.0, "impactScore": 6.9, "acInsufInfo": false, "obtainAllPrivilege": false, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false } ] }, "weaknesses": [ { "source": "nvd@nist.gov", "type": "Primary", "description": [ { "lang": "en", "value": "NVD-CWE-Other" } ] } ], "configurations": [ { "operator": "AND", "nodes": [ { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": false, "criteria": "cpe:2.3:o:openbsd:openbsd:3.9:*:*:*:*:*:*:*", "matchCriteriaId": "F5BB6C5D-4C43-4BB8-B1CE-A70BBE650CA1" }, { "vulnerable": false, "criteria": "cpe:2.3:o:openbsd:openbsd:4.0:*:*:*:*:*:*:*", "matchCriteriaId": "CC77812C-D84E-493E-9D21-1BA6C2129E70" } ] }, { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:a:ietf:ipv6:*:*:*:*:*:*:*:*", "matchCriteriaId": "73399CF9-225E-4FB5-8F34-2898E914018A" } ] } ] }, { "operator": "AND", "nodes": [ { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": false, "criteria": "cpe:2.3:o:netbsd:netbsd:3.1:*:*:*:*:*:*:*", "matchCriteriaId": "57C533D7-771E-4E33-A4FE-764C0B73F920" }, { "vulnerable": false, "criteria": "cpe:2.3:o:netbsd:netbsd:3.1:rc3:*:*:*:*:*:*", "matchCriteriaId": "3D95D05C-4FE1-4408-B8B8-5C5932800385" } ] }, { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:a:ietf:ipv6:*:*:*:*:*:*:*:*", "matchCriteriaId": "73399CF9-225E-4FB5-8F34-2898E914018A" } ] } ] }, { "operator": "AND", "nodes": [ { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": false, "criteria": "cpe:2.3:o:freebsd:freebsd:6.2:*:*:*:*:*:*:*", "matchCriteriaId": "9118B602-3FB6-4701-AC09-763DD48334BA" }, { "vulnerable": false, "criteria": "cpe:2.3:o:freebsd:freebsd:6.2:stable:*:*:*:*:*:*", "matchCriteriaId": "32FCB0B3-8FBE-49FA-B17E-0D5462C9E5B4" } ] }, { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:a:ietf:ipv6:*:*:*:*:*:*:*:*", "matchCriteriaId": "73399CF9-225E-4FB5-8F34-2898E914018A" } ] } ] } ], "references": [ { "url": "http://docs.info.apple.com/article.html?artnum=305712", "source": "cve@mitre.org" }, { "url": "http://docs.info.apple.com/article.html?artnum=306375", "source": "cve@mitre.org" }, { "url": "http://lists.opensuse.org/opensuse-security-announce/2008-02/msg00002.html", "source": "cve@mitre.org" }, { "url": "http://openbsd.org/errata39.html#022_route6", "source": "cve@mitre.org" }, { "url": "http://openbsd.org/errata40.html#012_route6", "source": "cve@mitre.org" }, { "url": "http://security.freebsd.org/advisories/FreeBSD-SA-07:03.ipv6.asc", "source": "cve@mitre.org" }, { "url": "http://www.kb.cert.org/vuls/id/267289", "source": "cve@mitre.org", "tags": [ "US Government Resource" ] }, { "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2007:171", "source": "cve@mitre.org" }, { "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2007:196", "source": "cve@mitre.org" }, { "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2007:216", "source": "cve@mitre.org" }, { "url": "http://www.novell.com/linux/security/advisories/2007_51_kernel.html", "source": "cve@mitre.org" }, { "url": "http://www.redhat.com/support/errata/RHSA-2007-0347.html", "source": "cve@mitre.org" }, { "url": "http://www.secdev.org/conf/IPv6_RH_security-csw07.pdf", "source": "cve@mitre.org" }, { "url": "http://www.securityfocus.com/archive/1/467939/30/6690/threaded", "source": "cve@mitre.org" }, { "url": "http://www.securityfocus.com/archive/1/471457", "source": "cve@mitre.org" }, { "url": "http://www.securityfocus.com/bid/23615", "source": "cve@mitre.org", "tags": [ "Patch" ] }, { "url": "http://www.securitytracker.com/id?1017949", "source": "cve@mitre.org" }, { "url": "http://www.ubuntu.com/usn/usn-486-1", "source": "cve@mitre.org" }, { "url": "http://www.ubuntu.com/usn/usn-508-1", "source": "cve@mitre.org" }, { "url": "http://www.vupen.com/english/advisories/2007/1563", "source": "cve@mitre.org" }, { "url": "http://www.vupen.com/english/advisories/2007/2270", "source": "cve@mitre.org" }, { "url": "http://www.vupen.com/english/advisories/2007/3050", "source": "cve@mitre.org" }, { "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/33851", "source": "cve@mitre.org" }, { "url": "https://issues.rpath.com/browse/RPL-1310", "source": "cve@mitre.org" }, { "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9574", "source": "cve@mitre.org" } ] }