CVE-2011-1652 - OpenCVE

Vendors	Products
Microsoft	Windows 7

Link	Providers
http://resources.infosecinstitute.com/slaac-attack/
https://lists.immunityinc.com/pipermail/dailydave/20110404/000122.html

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "descriptions": [{"lang": "en", "value": "The default configuration of Microsoft Windows 7 immediately prefers a new IPv6 and DHCPv6 service over a currently used IPv4 and DHCPv4 service upon receipt of an IPv6 Router Advertisement (RA), and does not provide an option to ignore an unexpected RA, which allows remote attackers to conduct man-in-the-middle attacks on communication with external IPv4 servers via vectors involving RAs, a DHCPv6 server, and NAT-PT on the local network, aka a \"SLAAC Attack.\" NOTE: it can be argued that preferring IPv6 complies with RFC 3484, and that attempting to determine the legitimacy of an RA is currently outside the scope of recommended behavior of host operating systems"}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2011-04-06T17:00:00Z", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"tags": ["x_refsource_MISC"], "url": "http://resources.infosecinstitute.com/slaac-attack/"}, {"name": "[dailydave] 20110404 SLAAC Attack - 0day Windows Network Interception Configuration Vulnerability", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "https://lists.immunityinc.com/pipermail/dailydave/20110404/000122.html"}], "tags": ["disputed"], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2011-1652", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "** DISPUTED ** The default configuration of Microsoft Windows 7 immediately prefers a new IPv6 and DHCPv6 service over a currently used IPv4 and DHCPv4 service upon receipt of an IPv6 Router Advertisement (RA), and does not provide an option to ignore an unexpected RA, which allows remote attackers to conduct man-in-the-middle attacks on communication with external IPv4 servers via vectors involving RAs, a DHCPv6 server, and NAT-PT on the local network, aka a \"SLAAC Attack.\" NOTE: it can be argued that preferring IPv6 complies with RFC 3484, and that attempting to determine the legitimacy of an RA is currently outside the scope of recommended behavior of host operating systems."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "http://resources.infosecinstitute.com/slaac-attack/", "refsource": "MISC", "url": "http://resources.infosecinstitute.com/slaac-attack/"}, {"name": "[dailydave] 20110404 SLAAC Attack - 0day Windows Network Interception Configuration Vulnerability", "refsource": "MLIST", "url": "https://lists.immunityinc.com/pipermail/dailydave/20110404/000122.html"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-06T22:37:25.625Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_MISC", "x_transferred"], "url": "http://resources.infosecinstitute.com/slaac-attack/"}, {"name": "[dailydave] 20110404 SLAAC Attack - 0day Windows Network Interception Configuration Vulnerability", "tags": ["mailing-list", "x_refsource_MLIST", "x_transferred"], "url": "https://lists.immunityinc.com/pipermail/dailydave/20110404/000122.html"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2011-1652", "datePublished": "2011-04-06T17:00:00Z", "dateReserved": "2011-04-06T00:00:00Z", "dateUpdated": "2024-09-16T20:41:51.749Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:microsoft:windows_7:*:*:*:*:*:*:*:*", "matchCriteriaId": "D56B932B-9593-44E2-B610-E4EB2143EB21", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [{"sourceIdentifier": "cve@mitre.org", "tags": ["disputed"]}], "descriptions": [{"lang": "en", "value": "The default configuration of Microsoft Windows 7 immediately prefers a new IPv6 and DHCPv6 service over a currently used IPv4 and DHCPv4 service upon receipt of an IPv6 Router Advertisement (RA), and does not provide an option to ignore an unexpected RA, which allows remote attackers to conduct man-in-the-middle attacks on communication with external IPv4 servers via vectors involving RAs, a DHCPv6 server, and NAT-PT on the local network, aka a \"SLAAC Attack.\" NOTE: it can be argued that preferring IPv6 complies with RFC 3484, and that attempting to determine the legitimacy of an RA is currently outside the scope of recommended behavior of host operating systems"}, {"lang": "es", "value": "**EN DISPUTA** La configuraci\u00f3n por defecto de Microsoft Windows 7 inmediatamente selecciona servicios IPv6 y DHCPv6 sobre los servicios IPv4 e DHCPv4 que usa actualmente una vez recibido de ruter una trama de aviso de router (AR), y no proporciona una opci\u00f3n para ignorar un AR, lo que permite a atacantes remotos para realizar ataques \"man-in-the-middle en la comunicaci\u00f3n con servidores externos IPv4 a trav\u00e9s de vectores participaci\u00f3n que impliquen RA, en un servidor DHCPv6 y NAT-PT en la red local, tambi\u00e9n conocido como ataque \"SLAAC\". NOTA: se puede argumentar que se prefiere IPv6 que cumpla con RFC 3484, y que intenta determinar la legitimidad de un RA est\u00e1 actualmente fuera del \u00e1mbito de la conducta recomendada de los sistemas operativos anfitriones."}], "id": "CVE-2011-1652", "lastModified": "2024-08-06T23:15:40.557", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:N/I:P/A:N", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2011-04-06T17:55:01.007", "references": [{"source": "cve@mitre.org", "tags": ["Exploit"], "url": "http://resources.infosecinstitute.com/slaac-attack/"}, {"source": "cve@mitre.org", "tags": ["Exploit"], "url": "https://lists.immunityinc.com/pipermail/dailydave/20110404/000122.html"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-16"}], "source": "nvd@nist.gov", "type": "Primary"}]}

Metrics

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact None

Integrity Impact Partial

Availability Impact None

Affected Vendors & Products

Metrics

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact None

Integrity Impact Partial

Availability Impact None

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object