CVE-2009-0778 : The icmp_send function in net/ipv4/icmp.c in the Linux kernel before 2.6.25, when configured as a router with a REJECT r

The icmp_send function in net/ipv4/icmp.c in the Linux kernel before 2.6.25, when configured as a router with a REJECT route, does not properly manage the Protocol Independent Destination Cache (aka DST) in some situations involving transmission of an ICMP Host Unreachable message, which allows remote attackers to cause a denial of service (connectivity outage) by sending a large series of packets to many destination IP addresses within this REJECT route, related to an "rt_cache leak."

Published 2009-03-12 15:20:50

Updated 2023-02-13 02:19:42

Source Red Hat, Inc.

View at NVD, CVE.org

Vulnerability category: Denial of service

Threat overview for CVE-2009-0778

Top countries where our scanners detected CVE-2009-0778

Top open port discovered on systems with this issue 52869

IPs affected by CVE-2009-0778 220,199

Threat actors abusing to this issue? Yes

Find out if you^* are affected by CVE-2009-0778!

^*Directly or indirectly through your vendors, service providers and 3rd parties. Powered by attack surface intelligence from SecurityScorecard.

Exploit prediction scoring system (EPSS) score for CVE-2009-0778

Probability of exploitation activity in the next 30 days: 1.37%

Percentile, the proportion of vulnerabilities that are scored at or less: ~ 85 % EPSS Score History EPSS FAQ

CVSS scores for CVE-2009-0778

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
7.1	HIGH	AV:N/AC:M/Au:N/C:N/I:N/A:C	8.6	6.9	NIST
Access Vector: Network Access Complexity: Medium Authentication: None Confidentiality Impact: None Integrity Impact: None Availability Impact: Complete

Vendor statements for CVE-2009-0778

Red Hat 2009-05-19

This issue did not affect the versions of Linux kernel as shipped with Red Hat Enterprise Linux 2.1, 3, 4, and Red Hat Enterprise MRG. It was addressed in Red Hat Enterprise Linux 5 via: https://rhn.redhat.com/errata/RHSA-2009-0326.html .

References for CVE-2009-0778

http://openwall.com/lists/oss-security/2009/03/11/2

Mailing List;Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=485163

Exploit;Issue Tracking;Third Party Advisory
http://www.vmware.com/security/advisories/VMSA-2009-0016.html

VMSA-2009-0016.6
Third Party Advisory

CVEs referencing this url
http://www.securitytracker.com/id?1021958

Third Party Advisory;VDB Entry
http://www.vupen.com/english/advisories/2009/3316

Webmail: access your OVH emails on ovhcloud.com | OVHcloud
Broken Link

CVEs referencing this url
http://www.redhat.com/support/errata/RHSA-2009-0326.html

Support
Broken Link

CVEs referencing this url
https://exchange.xforce.ibmcloud.com/vulnerabilities/49199

Third Party Advisory;VDB Entry
http://www.securityfocus.com/bid/34084

Third Party Advisory;VDB Entry
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=7c0ecc4c4f8fd90988aab8a95297b9c0038b6160
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.25

404: File not found
Broken Link

CVEs referencing this url
http://www.securityfocus.com/archive/1/507985/100/0/threaded

Third Party Advisory;VDB Entry

CVEs referencing this url
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7867

Third Party Advisory
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10215

Third Party Advisory

Products affected by CVE-2009-0778