CVE-2019-12258

HIGH

URGENT/11 Scanner, Based on Detection Tool by Armis

Title source: metasploit

Exploitation Summary

EIP tracks 1 public exploit for CVE-2019-12258. PoCs published by Ben Seri, Brent Cook, wvu, including Metasploit module auxiliary/scanner/vxworks/urgent11_check.

AI-analyzed exploit summary This Metasploit module scans for devices vulnerable to CVE-2019-12258 by sending malformed TCP and ICMP packets to detect the presence of VxWorks and IPnet stack. It does not exploit the vulnerability but identifies affected systems.

Description

Wind River VxWorks 6.6 through vx7 has Session Fixation in the TCP component. This is a IPNET security vulnerability: DoS of TCP connection via malformed TCP options.

Exploits (1)

metasploit SCANNER

by Ben Seri, Brent Cook, wvu · rubypoc

https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/scanner/vxworks/urgent11_check.rb

View Code ZIP pw:eip

This Metasploit module scans for devices vulnerable to CVE-2019-12258 by sending malformed TCP and ICMP packets to detect the presence of VxWorks and IPnet stack. It does not exploit the vulnerability but identifies affected systems.

Classification

Scanner 100%

Attack Type

Info Leak

Complexity

Moderate

Reliability

Reliable

Target: VxWorks with IPnet stack

No auth needed

Prerequisites: Network access to target ports (21, 22, 23, 80, 443)

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (9)

Core 9

Core References

Issue Tracking, Vendor Advisory x_refsource_misc

https://support2.windriver.com/index.php?page=security-notices