netsec-sig - [Security-WG] IPv6 NDP vulnerabilities
Subject: Internet2 Network Security SIG
List archive
- From: Karl Newell <>
- To: undisclosed-recipients:;
- Subject: [Security-WG] IPv6 NDP vulnerabilities
- Date: Tue, 7 Jun 2016 16:16:53 +0000
- Accept-language: en-US
- Authentication-results: internet2.edu; dkim=none (message not signed) header.d=none;internet2.edu; dmarc=none action=none header.from=internet2.edu;
- Spamdiagnosticoutput: 1:0
|
FYI, there’s a vulnerability against IPv6 Neighbor Discovery packets using specially crafted packets; attacks could cause denial of service. This is not vendor specific and Cisco and Juniper platforms are
vulnerable (other vendors are likely vulnerable, these two have posted advisories). Please review the following links; depending on vendor there are workarounds or software updates. If anyone has experienced or does experience an attack due to this vulnerability would you care to share? http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1409 http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10749 https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160525-ipv6 Cheers, Karl -- Karl Newell Cyberinfrastructure Security Engineer Internet2 520-344-0459 |
- [Security-WG] IPv6 NDP vulnerabilities, Karl Newell, 06/07/2016
Archive powered by MHonArc 2.6.16.