CVE-2012-5363

HIGH

FreeBSD/NetBSD <2012 - DoS

Title source: llm

Description

The IPv6 implementation in FreeBSD and NetBSD (unknown versions, year 2012 and earlier) allows remote attackers to cause a denial of service via a flood of ICMPv6 Neighbor Solicitation messages, a different vulnerability than CVE-2011-2393.

References (2)

[Mailing List, Third Party Advisory] http://www.openwall.com/lists/oss-security/2012/10/10/12

[Third Party Advisory, VDB Entry] https://www.securityfocus.com/bid/56170/info

Scores

CVSS v3 7.5

EPSS 0.0094

EPSS Percentile 76.0%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Classification

CWE

CWE-400

Status published

Affected Products (2)

freebsd/freebsd < 9.2

netbsd/netbsd < 6.0.2

Timeline

Published Feb 20, 2020

Tracked Since Feb 18, 2026