CVE-2016-3707

8.1HIGH

Key Information:

Vendor
Linux
Status
Linux Kernel-rt
Enterprise Linux For Real Time
Enterprise Linux For Real Time For Nfv
Vendor
CVE Published:
27 June 2016

Summary

The icmp_check_sysrq function in net/ipv4/icmp.c in the kernel.org projects/rt patches for the Linux kernel, as used in the kernel-rt package before 3.10.0-327.22.1 in Red Hat Enterprise Linux for Real Time 7 and other products, allows remote attackers to execute SysRq commands via crafted ICMP Echo Request packets, as demonstrated by a brute-force attack to discover a cookie, or an attack that occurs after reading the local icmp_echo_sysrq file.

References

https://access.redhat.com/errata/RHSA-2016:1341
vendor-advisoryx_refsource_REDHAT
http://lists.opensuse.org/opensuse-security-announce/2016...
vendor-advisoryx_refsource_SUSE
https://access.redhat.com/errata/RHSA-2016:1301
vendor-advisoryx_refsource_REDHAT

EPSS Score

3% chance of being exploited in the next 30 days.

CVSS V3.1

Score:
8.1
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
High
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Collectors

NVD DatabaseMitre Database
.