CVE-2006-6264

Currently unrated

Key Information:

Vendor: Microsoft
Status: Teredo
Vendor: CVE Published:; 4 December 2006

Summary

Teredo creates trusted peer entries for arbitrary incoming source Teredo addresses, even if the low 32 bits represent an intranet address, which might allow remote attackers to send IPv4 traffic to intranet hosts that use non-RFC1918 addresses, bypassing IPv4 ingress filtering.

References

http://www.symantec.com/avcenter/reference/Teredo_Securit...

x_refsource_MISC

http://www.securityfocus.com/archive/1/452996/100/0/threaded

mailing-listx_refsource_BUGTRAQ

http://www.securityfocus.com/archive/1/452989/100/0/threaded

mailing-listx_refsource_BUGTRAQ

EPSS Score

2% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Dec 4, 2006
Vulnerability Reserved
Dec 3, 2006

Collectors

NVD DatabaseMitre Database