Vulnerability Details : CVE-2013-2206
The sctp_sf_do_5_2_4_dupcook function in net/sctp/sm_statefuns.c in the SCTP implementation in the Linux kernel before 3.8.5 does not properly handle associations during the processing of a duplicate COOKIE ECHO chunk, which allows remote attackers to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact via crafted SCTP traffic.
Vulnerability category: Memory CorruptionDenial of service
Threat overview for CVE-2013-2206
Top countries where our scanners detected CVE-2013-2206
Top open port discovered on systems with this issue
49152
IPs affected by CVE-2013-2206 157,055
Threat actors abusing to this issue?
Yes
Find out if you* are
affected by CVE-2013-2206!
*Directly or indirectly through your vendors, service providers and 3rd parties.
Powered by
attack surface intelligence
from SecurityScorecard.
Exploit prediction scoring system (EPSS) score for CVE-2013-2206
74.11%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 98 %
Percentile, the proportion of vulnerabilities that are scored at or less