Denial of Service : AVM FRITZ!Box TCP SACK PANIC

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.108951

Categoría: Denial of Service

Título: AVM FRITZ!Box TCP SACK PANIC - Kernel Vulnerabilities

Resumen: Multiple AVM FRITZ!Box devices are prone to multiple Denial of Service; vulnerabilities.

Descripción: Summary:
Multiple AVM FRITZ!Box devices are prone to multiple Denial of Service
vulnerabilities.

Vulnerability Insight:
Three related flaws were found in the Linux kernel's handling of TCP Selective
Acknowledgement (SACK) packets handling with low MSS size.

Vulnerability Impact:
The extent of impact is understood to be limited to denial of service at this
time. No privilege escalation or information leak is currently suspected

Affected Software/OS:
AVM FRITZ!Box devices running AVM FRITZ!OS before version 7.12.

Solution:
Update to AVM FRITZ!OS 7.12 or later.

CVSS Score:
7.8

CVSS Vector:
AV:N/AC:L/Au:N/C:N/I:N/A:C

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2019-11477
CERT/CC vulnerability note: VU#905115
https://www.kb.cert.org/vuls/id/905115
http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2020-010.txt
http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20191225-01-kernel-en
http://www.vmware.com/security/advisories/VMSA-2019-0010.html
https://cert-portal.siemens.com/productcert/pdf/ssa-462066.pdf
https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA44193
https://kc.mcafee.com/corporate/index?page=content&id=SB10287
https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2019-0006
https://security.netapp.com/advisory/ntap-20190625-0001/
https://support.f5.com/csp/article/K78234183
https://www.synology.com/security/advisory/Synology_SA_19_28
http://packetstormsecurity.com/files/153346/Kernel-Live-Patch-Security-Notice-LSN-0052-1.html
http://packetstormsecurity.com/files/154951/Kernel-Live-Patch-Security-Notice-LSN-0058-1.html
https://access.redhat.com/security/vulnerabilities/tcpsack
https://git.kernel.org/pub/scm/linux/kernel/git/davem/net.git/commit/?id=3b4929f65b0d8249f19a50245cd88ed1a2f78cff
https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-001.md
https://wiki.ubuntu.com/SecurityTeam/KnowledgeBase/SACKPanic
https://www.oracle.com/security-alerts/cpujan2020.html
https://www.oracle.com/security-alerts/cpuoct2020.html
https://www.us-cert.gov/ics/advisories/icsa-19-253-03
http://www.openwall.com/lists/oss-security/2019/06/20/3
http://www.openwall.com/lists/oss-security/2019/06/28/2
http://www.openwall.com/lists/oss-security/2019/07/06/3
http://www.openwall.com/lists/oss-security/2019/07/06/4
http://www.openwall.com/lists/oss-security/2019/10/24/1
http://www.openwall.com/lists/oss-security/2019/10/29/3
RedHat Security Advisories: RHSA-2019:1594
https://access.redhat.com/errata/RHSA-2019:1594
RedHat Security Advisories: RHSA-2019:1602
https://access.redhat.com/errata/RHSA-2019:1602
RedHat Security Advisories: RHSA-2019:1699
https://access.redhat.com/errata/RHSA-2019:1699
Common Vulnerability Exposure (CVE) ID: CVE-2019-11478
Bugtraq: 20190722 [SECURITY] [DSA 4484-1] linux security update (Google Search)
https://seclists.org/bugtraq/2019/Jul/30
https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2019-0007
https://support.f5.com/csp/article/K26618426
http://packetstormsecurity.com/files/154408/Kernel-Live-Patch-Security-Notice-LSN-0055-1.html
https://git.kernel.org/pub/scm/linux/kernel/git/davem/net.git/commit/?id=f070ef2ac66716357066b683fb0baf55f8191a2e
Common Vulnerability Exposure (CVE) ID: CVE-2019-11479
BugTraq ID: 108818
http://www.securityfocus.com/bid/108818
https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2019-0008
https://support.f5.com/csp/article/K35421172
https://support.f5.com/csp/article/K35421172?utm_source=f5support&utm_medium=RSS
https://git.kernel.org/pub/scm/linux/kernel/git/davem/net.git/commit/?id=5f3e2bf008c2221478101ee72f5cb4654b9fc363
https://git.kernel.org/pub/scm/linux/kernel/git/davem/net.git/commit/?id=967c05aee439e6e5d7d805e195b3a20ef5c433d6
https://www.us-cert.gov/ics/advisories/icsma-20-170-06
https://usn.ubuntu.com/4041-1/
https://usn.ubuntu.com/4041-2/

Copyright Copyright (C) 2020 Greenbone Networks GmbH

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.108951
Categoría:	Denial of Service
Título:	AVM FRITZ!Box TCP SACK PANIC - Kernel Vulnerabilities
Resumen:	Multiple AVM FRITZ!Box devices are prone to multiple Denial of Service; vulnerabilities.
Descripción:	Summary: Multiple AVM FRITZ!Box devices are prone to multiple Denial of Service vulnerabilities. Vulnerability Insight: Three related flaws were found in the Linux kernel's handling of TCP Selective Acknowledgement (SACK) packets handling with low MSS size. Vulnerability Impact: The extent of impact is understood to be limited to denial of service at this time. No privilege escalation or information leak is currently suspected Affected Software/OS: AVM FRITZ!Box devices running AVM FRITZ!OS before version 7.12. Solution: Update to AVM FRITZ!OS 7.12 or later. CVSS Score: 7.8 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2019-11477 CERT/CC vulnerability note: VU#905115 https://www.kb.cert.org/vuls/id/905115 http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2020-010.txt http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20191225-01-kernel-en http://www.vmware.com/security/advisories/VMSA-2019-0010.html https://cert-portal.siemens.com/productcert/pdf/ssa-462066.pdf https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA44193 https://kc.mcafee.com/corporate/index?page=content&id=SB10287 https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2019-0006 https://security.netapp.com/advisory/ntap-20190625-0001/ https://support.f5.com/csp/article/K78234183 https://www.synology.com/security/advisory/Synology_SA_19_28 http://packetstormsecurity.com/files/153346/Kernel-Live-Patch-Security-Notice-LSN-0052-1.html http://packetstormsecurity.com/files/154951/Kernel-Live-Patch-Security-Notice-LSN-0058-1.html https://access.redhat.com/security/vulnerabilities/tcpsack https://git.kernel.org/pub/scm/linux/kernel/git/davem/net.git/commit/?id=3b4929f65b0d8249f19a50245cd88ed1a2f78cff https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-001.md https://wiki.ubuntu.com/SecurityTeam/KnowledgeBase/SACKPanic https://www.oracle.com/security-alerts/cpujan2020.html https://www.oracle.com/security-alerts/cpuoct2020.html https://www.us-cert.gov/ics/advisories/icsa-19-253-03 http://www.openwall.com/lists/oss-security/2019/06/20/3 http://www.openwall.com/lists/oss-security/2019/06/28/2 http://www.openwall.com/lists/oss-security/2019/07/06/3 http://www.openwall.com/lists/oss-security/2019/07/06/4 http://www.openwall.com/lists/oss-security/2019/10/24/1 http://www.openwall.com/lists/oss-security/2019/10/29/3 RedHat Security Advisories: RHSA-2019:1594 https://access.redhat.com/errata/RHSA-2019:1594 RedHat Security Advisories: RHSA-2019:1602 https://access.redhat.com/errata/RHSA-2019:1602 RedHat Security Advisories: RHSA-2019:1699 https://access.redhat.com/errata/RHSA-2019:1699 Common Vulnerability Exposure (CVE) ID: CVE-2019-11478 Bugtraq: 20190722 [SECURITY] [DSA 4484-1] linux security update (Google Search) https://seclists.org/bugtraq/2019/Jul/30 https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2019-0007 https://support.f5.com/csp/article/K26618426 http://packetstormsecurity.com/files/154408/Kernel-Live-Patch-Security-Notice-LSN-0055-1.html https://git.kernel.org/pub/scm/linux/kernel/git/davem/net.git/commit/?id=f070ef2ac66716357066b683fb0baf55f8191a2e Common Vulnerability Exposure (CVE) ID: CVE-2019-11479 BugTraq ID: 108818 http://www.securityfocus.com/bid/108818 https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2019-0008 https://support.f5.com/csp/article/K35421172 https://support.f5.com/csp/article/K35421172?utm_source=f5support&utm_medium=RSS https://git.kernel.org/pub/scm/linux/kernel/git/davem/net.git/commit/?id=5f3e2bf008c2221478101ee72f5cb4654b9fc363 https://git.kernel.org/pub/scm/linux/kernel/git/davem/net.git/commit/?id=967c05aee439e6e5d7d805e195b3a20ef5c433d6 https://www.us-cert.gov/ics/advisories/icsma-20-170-06 https://usn.ubuntu.com/4041-1/ https://usn.ubuntu.com/4041-2/
Copyright	Copyright (C) 2020 Greenbone Networks GmbH