Description
The ip_push_pending_frames function in Linux 2.4.x and 2.6.x before 2.6.16 increments the IP ID field when sending a RST after receiving unsolicited TCP SYN-ACK packets, which allows remote attackers to conduct an Idle Scan (nmap -sI) attack, which bypasses intended protections against such attacks.
Published: 2006-03-15
Score: 5.0 Medium
EPSS: 3.0% Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

No analysis available yet.

Remediation

No remediation available yet.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
Debian DSA Debian DSA DSA-1097-1 New Kernel 2.4.27 packages fix several vulnerabilities
Debian DSA Debian DSA DSA-1103-1 New Linux kernel 2.6.8 packages fix several vulnerabilities
EUVD EUVD EUVD-2006-1246 The ip_push_pending_frames function in Linux 2.4.x and 2.6.x before 2.6.16 increments the IP ID field when sending a RST after receiving unsolicited TCP SYN-ACK packets, which allows remote attackers to conduct an Idle Scan (nmap -sI) attack, which bypasses intended protections against such attacks.
Ubuntu USN Ubuntu USN USN-281-1 Linux kernel vulnerabilities
References
Link Providers
http://secunia.com/advisories/19402 cve-icon cve-icon
http://secunia.com/advisories/19955 cve-icon cve-icon
http://secunia.com/advisories/20157 cve-icon cve-icon
http://secunia.com/advisories/20398 cve-icon cve-icon
http://secunia.com/advisories/20671 cve-icon cve-icon
http://secunia.com/advisories/20914 cve-icon cve-icon
http://secunia.com/advisories/21136 cve-icon cve-icon
http://secunia.com/advisories/21465 cve-icon cve-icon
http://secunia.com/advisories/21983 cve-icon cve-icon
http://secunia.com/advisories/22417 cve-icon cve-icon
http://support.avaya.com/elmodocs2/security/ASA-2006-180.htm cve-icon cve-icon
http://support.avaya.com/elmodocs2/security/ASA-2006-200.htm cve-icon cve-icon
http://www.debian.org/security/2006/dsa-1097 cve-icon cve-icon
http://www.debian.org/security/2006/dsa-1103 cve-icon cve-icon
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.16.1 cve-icon cve-icon
http://www.mandriva.com/security/advisories?name=MDKSA-2006:086 cve-icon cve-icon
http://www.novell.com/linux/security/advisories/2006-05-31.html cve-icon cve-icon
http://www.redhat.com/support/errata/RHSA-2006-0437.html cve-icon cve-icon
http://www.redhat.com/support/errata/RHSA-2006-0575.html cve-icon cve-icon
http://www.securityfocus.com/archive/1/427622/100/0/threaded cve-icon cve-icon
http://www.securityfocus.com/archive/1/427753/100/0/threaded cve-icon cve-icon
http://www.securityfocus.com/archive/1/427893/100/0/threaded cve-icon cve-icon
http://www.securityfocus.com/archive/1/428605/30/6210/threaded cve-icon cve-icon
http://www.securityfocus.com/bid/17109 cve-icon cve-icon
http://www.vupen.com/english/advisories/2006/1140 cve-icon cve-icon
http://www.vupen.com/english/advisories/2006/2554 cve-icon cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2006-1242 cve-icon
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10317 cve-icon cve-icon
https://usn.ubuntu.com/281-1/ cve-icon cve-icon
https://www.cve.org/CVERecord?id=CVE-2006-1242 cve-icon
History

No history.

Subscriptions

Linux Linux Kernel
Redhat Enterprise Linux
cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published:

Updated: 2024-08-07T17:03:28.742Z

Reserved: 2006-03-15T00:00:00.000Z

Link: CVE-2006-1242

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2006-03-15T17:06:00.000

Modified: 2026-04-16T00:27:16.627

Link: CVE-2006-1242

cve-icon Redhat

Severity : Low

Publid Date: 2006-03-14T00:00:00Z

Links: CVE-2006-1242 - Bugzilla

cve-icon OpenCVE Enrichment

No data.

Weaknesses