Denial of Service Vulnerability in conntrackd of conntrack-tools 1.4.2 and Earlier

Denial of Service Vulnerability in conntrackd of conntrack-tools 1.4.2 and Earlier

CVE-2015-6496 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:N/A:P

conntrackd in conntrack-tools 1.4.2 and earlier does not ensure that the optional kernel modules are loaded before using them, which allows remote attackers to cause a denial of service (crash) via a (1) DCCP, (2) SCTP, or (3) ICMPv6 packet.

Learn more about our Web Application Penetration Testing UK.