IPv6 Sniffer Detection Vulnerability in Microsoft Windows Products
CVE-2010-4562

Currently unrated

Key Information:

Vendor

Microsoft
Status
Windows 2000
Windows Server 2008
Windows Vista
Windows 7
Vendor
CVE Published:
2 February 2012

What is CVE-2010-4562?

This vulnerability allows remote adversaries to detect if a host is monitoring network traffic by sending an ICMPv6 Echo Request to a multicast address. If the host responds with an Echo Reply, it can be inferred that network sniffing is active. This flaw affects several versions of Microsoft Windows, making it crucial for users to implement effective security measures to mitigate risks associated with potential network sniffing by attackers.

References

http://seclists.org/fulldisclosure/2011/Apr/254
mailing-listx_refsource_FULLDISC
http://seclists.org/dailydave/2011/q2/25
mailing-listx_refsource_MLIST

EPSS Score

17% chance of being exploited in the next 30 days.

Timeline

  • Vulnerability Reserved

  • Vulnerability published

.