| The Vigil@nce team watches vulnerabilities impacting your computers, and then offers solutions, a database and tools to correct them. |
|
 |
|
|
|
vulnerability bulletin CVE-2012-0194
AIX: denial of service via TCP Large Send Offload
Synthesis of the vulnerability
| When TCP Large Send Offload is enabled on a network interface, an attacker can send a sequence of TCP packets, in order to stop the system. |
Severity: 2/4.
Creation date: 06/02/2012.
|
Impacted products
Description of the vulnerability
The TCP Large Send Offload feature is used when the kernel does not fragment TCP packets greater than the MTU. The network device is thus in charge of this fragmentation.
However, when the kernel has to reply to some TCP packets, using the Offload, it panics. Technical details are unknown.
When TCP Large Send Offload is enabled on a network interface, an attacker can therefore send a sequence of TCP packets, in order to stop the system. |
Share this bulletin
Complete Vigil@nce bulletin
Characteristics
Title: AIX: denial of service via TCP Large Send Offload.
Keywords: Large MTU Offload Send TCP denial service.
Identifiers: BID-51864, CERTA-2012-AVI-062, CVE-2012-0194, IV13751, IV13820, IV13827, IV14209, IV14210, IV14211, VIGILANCE-VUL-11343.
|
Information sources
Solutions for this vulnerability
Computer vulnerabilities tracking service
Vigil@nce provides an application vulnerability alert. The technology watch team tracks security threats targeting the computer system. The Vigil@nce computer vulnerability tracking service alerts your teams of vulnerabilities or threats impacting your information system. The Vigil@nce vulnerability database contains several thousand vulnerabilities.
|
