Launchpad.net

CVE 2006-1242

The ip_push_pending_frames function in Linux 2.4.x and 2.6.x before 2.6.16 increments the IP ID field when sending a RST after receiving unsolicited TCP SYN-ACK packets, which allows remote attackers to conduct an Idle Scan (nmap -sI) attack, which bypasses intended protections against such attacks.

See the

CVE page on Mitre.org for more details.

References

BID: 17109
CONFIRM: http://www.kernel.org/...
SECUNIA: 19402
SECUNIA: 19955
SECUNIA: 20157
DEBIAN: DSA-1097
SECUNIA: 20671
SUSE: SUSE-SA:2006:028
DEBIAN: DSA-1103
SECUNIA: 20914
REDHAT: RHSA-2006:0437
SECUNIA: 21136
REDHAT: RHSA-2006:0575
SECUNIA: 21465
SECUNIA: 20398
CONFIRM: http://support.avaya.c...
SECUNIA: 21983
CONFIRM: http://support.avaya.c...
SECUNIA: 22417
MANDRIVA: MDKSA-2006:086
VUPEN: ADV-2006-1140
VUPEN: ADV-2006-2554
OVAL: oval:org.mitre.oval:de...
UBUNTU: USN-281-1
BUGTRAQ: 20060314 Linux zero IP...
BUGTRAQ: 20060315 Re: Linux zer...
BUGTRAQ: 20060316 Re: Linux zer...
BUGTRAQ: 20060323 Re: Linux zer...

Launchpad.net

CVE 2006-1242

Related bugs

References