Microsoft Windows TCP/IP Route Information code execution (ICMPv6_Route_Information_Exec)

About this signature or vulnerability

IBM Security Server Protection for Windows, Proventia Network IDS, Proventia-G 1.1 and earlier, Proventia Network MFS, RealSecure Server Sensor, RealSecure Network, Proventia Desktop, Proventia Network IPS, Proventia Server IPS for Linux technology, Virtual Server Protection for Vmware:

This signature detects malformed ICMPv6 Route Information packets that could allow remote code execution during an attack.

Default risk level

 High

Sensors that have this signature

IBM Security Server Protection for Windows: 2.0.300.2480, IBM Security Server Protection for Windows: 2.1.14.2480, Proventia Network IDS: XPU 30.020, Proventia-G 1.1 and earlier: XPU 30.020, Proventia Network MFS: XPU 30.020, RealSecure Server Sensor: XPU 30.020, RealSecure Network: XPU 30.020, Proventia Desktop: 2480, Proventia Network IPS: XPU 30.020, Proventia Server IPS for Linux technology: 30.020, Virtual Server Protection for Vmware: XPU 30.020

Systems affected

Microsoft Windows Vista, Microsoft Windows Vista: x64, Microsoft Windows Vista: SP1, Microsoft Windows Vista: SP1 x64, Microsoft Windows Server 2008: Itanium, Microsoft Windows Server 2008: x32, Microsoft Windows Server 2008: x64, Microsoft Windows Vista: SP2 x64, Microsoft Windows Vista: SP2, Microsoft Windows Server 2008: SP2 x32, Microsoft Windows Server 2008: SP2 x64, Microsoft Windows Server 2008: SP2 Itanium

Type

Unauthorized Access Attempt

Vulnerability description

How to remove this vulnerability

References