CVE-2013-4348

Linux Kernel <= 3.12 - Denial of Service via IHL Field in IPIP Packet

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2013-4348. PoCs published by bl4ck5un.

AI-analyzed exploit summary This PoC exploits a denial-of-service vulnerability in the Linux kernel's flow dissector by crafting a malformed IPIP packet that triggers an infinite loop. The exploit constructs a raw packet with nested IP headers and sends it via a raw socket to crash the target system.

Description

The skb_flow_dissect function in net/core/flow_dissector.c in the Linux kernel through 3.12 allows remote attackers to cause a denial of service (infinite loop) via a small value in the IHL field of a packet with IPIP encapsulation.

Exploits (1)

nomisec WORKING POC
by bl4ck5un · poc
https://github.com/bl4ck5un/cve-2013-4348

This PoC exploits a denial-of-service vulnerability in the Linux kernel's flow dissector by crafting a malformed IPIP packet that triggers an infinite loop. The exploit constructs a raw packet with nested IP headers and sends it via a raw socket to crash the target system.

Classification
Working Poc 90%
Attack Type
Dos
Complexity
Moderate
Reliability
Reliable
Target: Linux kernel (versions affected by CVE-2013-4348)
No auth needed
Prerequisites: Ability to send raw packets to the target system · Target system running a vulnerable Linux kernel
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (6)

Core 6
Core References
Third Party Advisory vendor-advisory x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2013-1490.html
Issue Tracking, Third Party Advisory x_refsource_confirm
https://bugzilla.redhat.com/show_bug.cgi?id=1007939
Third Party Advisory vendor-advisory x_refsource_ubuntu
http://www.ubuntu.com/usn/USN-2070-1
Mailing List, Third Party Advisory vendor-advisory x_refsource_suse
http://lists.opensuse.org/opensuse-security-announce/2014-02/msg00002.html
Third Party Advisory vendor-advisory x_refsource_ubuntu
http://www.ubuntu.com/usn/USN-2075-1

Scores

EPSS 0.0941
EPSS Percentile 94.8%

Details

CWE
CWE-399
Status published
Products (3)
canonical/ubuntu_linux 12.04
canonical/ubuntu_linux 13.10
linux/linux_kernel 3.2 - 3.2.54
Published Nov 04, 2013
Tracked Since Feb 18, 2026