New release : CTI Report - Pharmaceutical and drug manufacturing 

                 Download now

IPv6 and security: news from the front – November

November 26, 2013

IPv6 and security: news from the front – November

Published articles

Bruce Sinclair published an article on the blog Network World : Biggest risks in IPv6 security today. In it, he presents the 6 main risks associated with IPv6 according to forum members. gogoNET :

  • «lack of IPv6 security training/education»; ;
  • «security device bypass via unfiltered IPv6 and tunneled traffic»; ;
  • «lack of IPv6 support at ISPs and vendors»; ;
  • «congruence of security policies in v4 & v6»; ;
  • «"bugs in new code";
  • «"Absence of NAT".

Conferences

Mathias Morbitzer gave a presentation at the conference HITB : TCP Idle Scans in IPv6. He presented the results of his thesis, during which he implemented the IPv6 Idle Scans functionality in the Nmap tool. In addition to the slides, A short presentation of his work is available. here and his complete thesis is available here.

Tools

New version of’IPv6 Toolkit which fixes the «failure to obtain next-hop address» error. Changelogs here.

Enno Rey has made one of his tools public, named IPv6 Scanner. Based on the Python and Scapy languages, it allows port scans and implements evasion methods.

Vulnerabilities

Two vulnerabilities (CVSS Base = 6.8 and 5.8) affecting Blackberry Link have been discovered:

  • Blackberry Link includes an Nginx server that listens on an IPv6 address and allows reading and writing arbitrary files without access control (CVE-2013-3694 And BSRT 2013-012) ;
  • In some use cases, Blackberry Link does not correctly determine which user is logged in, thus allowing access to arbitrary files using IPv6 requests (CVE-2013-6798 And BSRT 2013-012).

A vulnerability (CVSS Base = 7.1) affecting the UFO functionality of the Linux kernel has been discovered: it is possible to crasher the OS by sending a specially designed IPv6 packet (CVE-2013-4563).

A vulnerability (CVSS Base = 5.4) affecting Cisco ASA equipment has been discovered: if the NAT64 or NAT66 functionality is used, sending a specially crafted packet may cause crasher the equipment (CVE-2013-4563).

A vulnerability (CVSS Base = 6.1) affecting Cisco NX-OS has been discovered: sending multiple specially crafted NS messages can create a denial-of-service situation by preventing the equipment from responding to legitimate NS messages (CVE-2013-6683).

Contact