Back to search
CVE-2006-1242
Published: Mar 15, 2006
Modified: Aug 7, 2024
PUBLISHED
Description
The ip_push_pending_frames function in Linux 2.4.x and 2.6.x before 2.6.16 increments the IP ID field when sending a RST after receiving unsolicited TCP SYN-ACK packets, which allows remote attackers to conduct an Idle Scan (nmap -sI) attack, which bypasses intended protections against such attacks.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
RHSA-2006:0437
vendor-advisory
x_refsource_REDHAT
ADV-2006-2554
vdb-entry
x_refsource_VUPEN
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.16.1
x_refsource_CONFIRM
20060315 Re: Linux zero IP ID vulnerability?
mailing-list
x_refsource_BUGTRAQ
USN-281-1
vendor-advisory
x_refsource_UBUNTU
21136
third-party-advisory
x_refsource_SECUNIA
19402
third-party-advisory
x_refsource_SECUNIA
20060316 Re: Linux zero IP ID vulnerability?
mailing-list
x_refsource_BUGTRAQ
21983
third-party-advisory
x_refsource_SECUNIA
17109
vdb-entry
x_refsource_BID
DSA-1097
vendor-advisory
x_refsource_DEBIAN
RHSA-2006:0575
vendor-advisory
x_refsource_REDHAT
20060314 Linux zero IP ID vulnerability?
mailing-list
x_refsource_BUGTRAQ
SUSE-SA:2006:028
vendor-advisory
x_refsource_SUSE
19955
third-party-advisory
x_refsource_SECUNIA
20060323 Re: Linux zero IP ID vulnerability?
mailing-list
x_refsource_BUGTRAQ
http://support.avaya.com/elmodocs2/security/ASA-2006-180.htm
x_refsource_CONFIRM
DSA-1103
vendor-advisory
x_refsource_DEBIAN
21465
third-party-advisory
x_refsource_SECUNIA
oval:org.mitre.oval:def:10317
vdb-entry
signature
x_refsource_OVAL
ADV-2006-1140
vdb-entry
x_refsource_VUPEN
http://support.avaya.com/elmodocs2/security/ASA-2006-200.htm
x_refsource_CONFIRM
20398
third-party-advisory
x_refsource_SECUNIA
22417
third-party-advisory
x_refsource_SECUNIA
MDKSA-2006:086
vendor-advisory
x_refsource_MANDRIVA
20671
third-party-advisory
x_refsource_SECUNIA
20157
third-party-advisory
x_refsource_SECUNIA
20914
third-party-advisory
x_refsource_SECUNIA
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now