Insufficient Default IPv6 Routing Table Size in Livebox 3 Sagemcom SG30_sip-fr-5.15.8.1 Devices: A Potential Denial-of-Service Vulnerability

Insufficient Default IPv6 Routing Table Size in Livebox 3 Sagemcom SG30_sip-fr-5.15.8.1 Devices: A Potential Denial-of-Service Vulnerability

CVE-2017-6552 · HIGH Severity

AV:N/AC:L/AU:N/C:N/I:N/A:C

Livebox 3 Sagemcom SG30_sip-fr-5.15.8.1 devices have an insufficiently large default value for the maximum IPv6 routing table size: it can be filled within minutes. An attacker can exploit this issue to render the affected system unresponsive, resulting in a denial-of-service condition for telephone, Internet, and TV services.

Learn more about our Web Application Penetration Testing UK.