CVE-2016-1879

HIGH

FreeBSD <9.3p33, 10.1p26, 10.2p9 - DoS

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2016-1879. PoCs published by ptsecurity.

AI-analyzed exploit summary This exploit sends a malformed ICMPv6 packet with an SCTP header shorter than expected, triggering a NULL pointer dereference in FreeBSD's SCTP parser, resulting in a kernel panic (DoS). It uses Scapy to craft and send the packet.

Description

The Stream Control Transmission Protocol (SCTP) module in FreeBSD 9.3 before p33, 10.1 before p26, and 10.2 before p9, when the kernel is configured for IPv6, allows remote attackers to cause a denial of service (assertion failure or NULL pointer dereference and kernel panic) via a crafted ICMPv6 packet.

Exploits (1)

exploitdb WORKING POC

by ptsecurity · pythondosfreebsd

https://www.exploit-db.com/exploits/39305

View Code ZIP pw:eip

This exploit sends a malformed ICMPv6 packet with an SCTP header shorter than expected, triggering a NULL pointer dereference in FreeBSD's SCTP parser, resulting in a kernel panic (DoS). It uses Scapy to craft and send the packet.

Classification

Working Poc 95%

Attack Type

Dos

Complexity

Trivial

Reliability

Reliable

Target: FreeBSD (versions 9.3, 10.1, and 10.2)

No auth needed

Prerequisites: Target must have SCTP and IPv6 enabled · Attacker must know the target's MAC and IPv6 address

MITRE ATT&CK

T1499 - Endpoint Denial of Service

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4

Core References

Exploit, Third Party Advisory exploit x_refsource_exploit-db

https://www.exploit-db.com/exploits/39305/

Vendor Advisory vendor-advisory x_refsource_freebsd

https://www.freebsd.org/security/advisories/FreeBSD-SA-16:01.sctp.asc

Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack

http://www.securitytracker.com/id/1034673

Exploit, Third Party Advisory x_refsource_misc

http://packetstormsecurity.com/files/135369/FreeBSD-SCTP-ICMPv6-Denial-Of-Service.html

Scores

CVSS v3 7.5

EPSS 0.1391

EPSS Percentile 96.1%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Details

Status published

Products (3)

freebsd/freebsd 9.3

freebsd/freebsd 10.1

freebsd/freebsd 10.2

Published Jan 29, 2016

Tracked Since Feb 18, 2026