Vigil@nce - Windows: denial of service via IPv6 Router Advertisement
February 2014 by Vigil@nce
This bulletin was written by Vigil@nce : http://vigilance.fr/offer
SYNTHESIS OF THE VULNERABILITY
An attacker can send numerous ICMPv6 Router Advertisement packets,
in order to trigger a denial of service.
Impacted products: Microsoft Windows 2012, Windows 8
Severity: 2/4
Creation date: 11/02/2014
DESCRIPTION OF THE VULNERABILITY
The IPv6 Neighbor Discovery protocol uses 5 types of ICMPv6
packets (RFC 4861):
– Router Solicitation : query the Ethernet address of a gateway
– Router Advertisement : answer/announce indicating the gateway
– etc.
However, Windows does no correctly manage resources required to
handle Router Advertisement packets containing several routers.
This vulnerability may be a duplicate of VIGILANCE-VUL-12064
(https://vigilance.fr/tree/1/12064?w=66901).
An attacker can therefore send numerous ICMPv6 Router
Advertisement packets, in order to trigger a denial of service.
ACCESS TO THE COMPLETE VIGIL@NCE BULLETIN
http://vigilance.fr/vulnerability/Windows-denial-of-service-via-IPv6-Router-Advertisement-14219