News

Codenomicon CROSS team finds IPv6 vulnerability in Linux kernel

January 22, 2010

Codenomicon CROSS team has found a vulnerability in Linux kernel regarding the handling of IPv6 jumbograms. The vulnerability allows a remote attacker to cause a Denial of Service by sending single IPv6 jumbogram with invalid contents to a vulnerable system. The vulnerability was found using Defensics for IPv6, a fuzzing tool that covers all aspects of IPv6 communications with thorough model-based test generators.

For more information on the vulnerability and how to protect yourself:
http://www.cert.fi/en/reports/2010/vulnerability341748.html

For more information on CROSS:
http://www.codenomicon.com/labs/cross/

Datasheets for IPv6 test suites:

Codenomicon Network Analyzer

Codenomicon DEFENSICS™ 3.0 - Free evaluation

Sign up for our newsletter

Follow us on:

Twitter Facebook