{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "descriptions": [{"lang": "en", "value": "The Linux kernel, when using IPv6, allows remote attackers to determine whether a host is sniffing the network by sending an ICMPv6 Echo Request to a multicast address and determining whether an Echo Reply is sent, as demonstrated by thcping."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2012-02-02T17:00:00Z", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "20110415 Another Microsoft (and other) IPv6 security issue: sniffer detection", "tags": ["mailing-list", "x_refsource_FULLDISC"], "url": "http://seclists.org/fulldisclosure/2011/Apr/254"}, {"name": "[dailydave] 20110415 Another Microsoft (and other) IPv6 security issue: sniffer detection", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "http://seclists.org/dailydave/2011/q2/25"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2010-4563", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "The Linux kernel, when using IPv6, allows remote attackers to determine whether a host is sniffing the network by sending an ICMPv6 Echo Request to a multicast address and determining whether an Echo Reply is sent, as demonstrated by thcping."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "20110415 Another Microsoft (and other) IPv6 security issue: sniffer detection", "refsource": "FULLDISC", "url": "http://seclists.org/fulldisclosure/2011/Apr/254"}, {"name": "[dailydave] 20110415 Another Microsoft (and other) IPv6 security issue: sniffer detection", "refsource": "MLIST", "url": "http://seclists.org/dailydave/2011/q2/25"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-07T03:51:17.197Z"}, "title": "CVE Program Container", "references": [{"name": "20110415 Another Microsoft (and other) IPv6 security issue: sniffer detection", "tags": ["mailing-list", "x_refsource_FULLDISC", "x_transferred"], "url": "http://seclists.org/fulldisclosure/2011/Apr/254"}, {"name": "[dailydave] 20110415 Another Microsoft (and other) IPv6 security issue: sniffer detection", "tags": ["mailing-list", "x_refsource_MLIST", "x_transferred"], "url": "http://seclists.org/dailydave/2011/q2/25"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2010-4563", "datePublished": "2012-02-02T17:00:00Z", "dateReserved": "2010-12-20T00:00:00Z", "dateUpdated": "2024-09-16T21:02:43.532Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "matchCriteriaId": "155AD4FB-E527-4103-BCEF-801B653DEA37", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "The Linux kernel, when using IPv6, allows remote attackers to determine whether a host is sniffing the network by sending an ICMPv6 Echo Request to a multicast address and determining whether an Echo Reply is sent, as demonstrated by thcping."}, {"lang": "es", "value": "El kernel de Linux, cuando se utiliza IPv6, permite a atacantes remotos determinar si un host est\u00e1 interceptando las comunicaciones de la red mediante el env\u00edo de una solicitud de eco ICMPv6 a una direcci\u00f3n multicast y determinar si se env\u00eda una respuesta de eco, como lo demuestra thcping."}], "id": "CVE-2010-4563", "lastModified": "2012-02-03T05:00:00.000", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.0, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2012-02-02T17:55:00.847", "references": [{"source": "cve@mitre.org", "url": "http://seclists.org/dailydave/2011/q2/25"}, {"source": "cve@mitre.org", "url": "http://seclists.org/fulldisclosure/2011/Apr/254"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-200"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{"bugzilla": {"description": "kernel: ipv6: sniffer detection", "id": "788930", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=788930"}, "csaw": false, "cvss": {"cvss_base_score": "2.9", "cvss_scoring_vector": "AV:A/AC:M/Au:N/C:P/I:N/A:N", "status": "draft"}, "details": ["The Linux kernel, when using IPv6, allows remote attackers to determine whether a host is sniffing the network by sending an ICMPv6 Echo Request to a multicast address and determining whether an Echo Reply is sent, as demonstrated by thcping."], "name": "CVE-2010-4563", "package_state": [{"cpe": "cpe:/o:redhat:enterprise_linux:6", "fix_state": "Affected", "package_name": "kernel", "product_name": "Red Hat Enterprise Linux 6"}], "public_date": "2011-04-15T00:00:00Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2010-4563\nhttps://nvd.nist.gov/vuln/detail/CVE-2010-4563"], "statement": "The Red Hat Security Response Team has rated this issue as having low security \nimpact. This issue is not currently planned to be addressed in future updates. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.", "threat_severity": "Low"}