(MS10-009) Microsoft Windows ICMPv6 Route Information Vulnerability (974145)

Threat Detail

Vulnerability Type: misconfiguration

Impact of Exploitation: Malicious remote network traffic

CVE Reference: N/A

Next Steps:

Overview
Timeline
Recommendations
Additional Resources

Overview

A remote code execution vulnerability exists in the Windows TCP/IP stack.

Microsoft Windows is an industry standard operating system. A remote code execution vulnerability exists in the Windows TCP/IP stack. The vulnerability is due to insufficient bounds checking when processing specially crafted ICMPv6 Route Information packets. An attacker to take control of the targeted system by sending specially crafted ICMPv6 Route Information packers to a machine with IPv6 enabled.

Attack Vector

Malicious remote network traffic

User Interaction

no user interaction is needed

Vendor Status

Responded and patched

Vulnerable Systems

Windows Vista SP1,
Windows Vista X64 SP1,
Windows Server 2008 RTM,

Timeline

2010-02-09

Vendor has provided a patch.

Recommendations

The vendor has released an update to address this issue.
http://www.microsoft.com/technet/security/bulletin/ms10-009.mspx

Recommendations McAfee Product Mitigation

Additional Resources

(MS10-009) Microsoft Windows ICMPv6 Route Information Vulnerability (974145)
http://www.microsoft.com/technet/security/bulletin/ms10-009.mspx