Teredo Source Routing Vulnerability in Networking Solutions
CVE-2006-6263

Currently unrated

Key Information:

Vendor
Microsoft
Status
Teredo
Vendor
CVE Published:
4 December 2006

Summary

The Teredo protocol features a vulnerability wherein clients with source routing enabled can unwittingly expose networks to remote exploitation. Under specific conditions, when these clients encounter a Routing header within an encapsulated IPv6 packet, they are programmed to forward the packet to the next hop. This behavior may allow attackers to circumvent standard security configurations of certain Internet gateways that are designed to reject all source-routed packets, thereby increasing the risk of unauthorized access and data breaches.

References

http://www.symantec.com/avcenter/reference/Teredo_Securit...
x_refsource_MISC
http://www.securityfocus.com/archive/1/452996/100/0/threaded
mailing-listx_refsource_BUGTRAQ
http://www.securityfocus.com/archive/1/452989/100/0/threaded
mailing-listx_refsource_BUGTRAQ

EPSS Score

9% chance of being exploited in the next 30 days.

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.
CVE-2006-6263 : Teredo Source Routing Vulnerability in Networking Solutions | SecurityVulnerability.io