CVE-2016-5696

moderate-risk
Published 2016-08-06

net/ipv4/tcp_input.c in the Linux kernel before 4.7 does not properly determine the rate of challenge ACK segments, which makes it easier for remote attackers to hijack TCP sessions via a blind in-window attack.

Do I need to act?

!
29.2% chance of exploitation in next 30 days
EPSS score — higher than 71% of all CVEs
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
4
CVSS 4.8/10 Medium
NETWORK / HIGH complexity

Affected Products (4)

Affected Vendors

Linux Google Oracle

References (64)

Issue Tracking http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=75ff39...
http://rhn.redhat.com/errata/RHSA-2016-1631.html
http://rhn.redhat.com/errata/RHSA-2016-1632.html
http://rhn.redhat.com/errata/RHSA-2016-1633.html
http://rhn.redhat.com/errata/RHSA-2016-1657.html
http://rhn.redhat.com/errata/RHSA-2016-1664.html
http://rhn.redhat.com/errata/RHSA-2016-1814.html
http://rhn.redhat.com/errata/RHSA-2016-1815.html
http://rhn.redhat.com/errata/RHSA-2016-1939.html
Third Party Advisory http://source.android.com/security/bulletin/2016-10-01.html
Mailing List http://www.openwall.com/lists/oss-security/2016/07/12/2
Third Party Advisory http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.h...
Vendor Advisory http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.htm...
Technical Description http://www.prnewswire.com/news-releases/mitnick-attack-reappears-at-geekpwn-maca...
http://www.securityfocus.com/bid/91704
http://www.securitytracker.com/id/1036625
http://www.ubuntu.com/usn/USN-3070-1
http://www.ubuntu.com/usn/USN-3070-2
http://www.ubuntu.com/usn/USN-3070-3
http://www.ubuntu.com/usn/USN-3070-4
and 44 more references
40
/ 100
moderate-risk
Severity 15/34 · Moderate
Exploitability 15/34 · Moderate
Exposure 10/34 · Low