CVE-2017-7397

HIGH

BackBox Linux 4.6 - Denial of Service via Martian Source IP Packet Flood

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2017-7397. PoCs published by FarazPajohan.

AI-analyzed exploit summary This exploit code is a network packet generator designed to perform various types of network attacks, including TCP, UDP, and ICMP flooding. It allows customization of source and destination IP addresses, ports, and attack types, making it a versatile tool for testing network resilience or conducting denial-of-service (DoS) attacks.

Description

BackBox Linux 4.6 allows remote attackers to cause a denial of service (ksoftirqd CPU consumption) via a flood of packets with Martian source IP addresses (as defined in RFC 1812 section 5.3.7). This product enables net.ipv4.conf.all.log_martians by default. NOTE: the vendor reports "It has been proved that this vulnerability has no foundation and it is totally fake and based on false assumptions.

Exploits (1)

exploitdb WORKING POC

by FarazPajohan · cdoslinux

https://www.exploit-db.com/exploits/41781

View Code ZIP pw:eip

This exploit code is a network packet generator designed to perform various types of network attacks, including TCP, UDP, and ICMP flooding. It allows customization of source and destination IP addresses, ports, and attack types, making it a versatile tool for testing network resilience or conducting denial-of-service (DoS) attacks.

Classification

Working Poc 90%

Attack Type

Dos

Complexity

Moderate

Reliability

Reliable

Target: Network infrastructure (generic)

No auth needed

Prerequisites: Raw socket permissions · Network access to target

MITRE ATT&CK

T1498 - Network Denial of Service

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (5)

Core 5

Core References

Exploit, Third Party Advisory x_refsource_misc

http://www.exploitalert.com/view-details.html?id=26361

Vendor Advisory x_refsource_misc

https://backbox.org/portal/blog/false-cve-backbox-46-unmasked

Exploit, Third Party Advisory x_refsource_misc

https://cxsecurity.com/issue/WLB-2017040001

Vendor Advisory x_refsource_misc

https://forum.backbox.org/security-advisories/waiting-verification-backbox-os-denial-of-service/msg10218

Exploit, Third Party Advisory, VDB Entry exploit x_refsource_exploit-db

https://www.exploit-db.com/exploits/41781/

Scores

CVSS v3 7.5

EPSS 0.5136

EPSS Percentile 98.0%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Details

CWE

CWE-400

Status published

Products (1)

backbox/backbox_linux 4.6

Published Apr 03, 2017

Tracked Since Feb 18, 2026