Required CVE Record Information
Description
The IPv6 Neighbor Discovery Protocol (NDP) implementation in HP HP-UX B.11.11, B.11.23, and B.11.31 does not validate the origin of Neighbor Discovery messages, which allows remote attackers to cause a denial of service (loss of connectivity), read private network traffic, and possibly execute arbitrary code via a spoofed message that modifies the Forward Information Base (FIB), a related issue to CVE-2008-2476.
References 6 Total
- marc.info: HPSBUX02407 vendor-advisory
- secunia.com: 33787 third-party-advisory
- securitytracker.com: 1021660 vdb-entry
- vupen.com: ADV-2009-0312 vdb-entry
- oval.cisecurity.org: oval:org.mitre.oval:def:5943 vdb-entrysignature
- marc.info: SSRT080107 vendor-advisory
Updated:
This container includes required additional information provided by the CVE Program for this vulnerability.
References 6 Total
- marc.info: HPSBUX02407 vendor-advisoryx_transferred
- secunia.com: 33787 third-party-advisoryx_transferred
- securitytracker.com: 1021660 vdb-entryx_transferred
- vupen.com: ADV-2009-0312 vdb-entryx_transferred
- oval.cisecurity.org: oval:org.mitre.oval:def:5943 vdb-entrysignaturex_transferred
- marc.info: SSRT080107 vendor-advisoryx_transferred