Denial of Service in Apple Mac OS X IPv6 Implementation
CVE-2012-5366

7.5HIGH

Key Information:

Vendor: Apple
Status: Mac Os X
Vendor: CVE Published:; 20 February 2020

What is CVE-2012-5366?

The IPv6 implementation in Apple Mac OS X prior to 2013 is susceptible to a denial of service attack. By sending a series of malformed ICMPv6 Router Advertisement packets that contain an excessive number of Routing entries, an attacker can disrupt normal operations, rendering the system unresponsive. This vulnerability highlights the risks associated with improperly handled network protocols, emphasizing the importance of robust security measures in network configurations.

References

http://www.openwall.com/lists/oss-security/2012/10/10/12

x_refsource_MISC

https://www.securityfocus.com/bid/56170/info

vdb-entryx_refsource_BID

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Feb 20, 2020
Vulnerability Reserved
Oct 10, 2012