CVE-2020-11898

CRITICAL

Treck TCP/IP < 6.0.1.66 - Information Disclosure via IPv4/ICMPv4 Length Parameter Inconsistency

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2020-11898. PoCs published by Ransc0rp1on.

AI-analyzed exploit summary This repository contains a Python-based scanner for detecting CVE-2020-11898 (Ripple20), a vulnerability in the Treck TCP/IP stack. The tool sends crafted fragmented IP-in-IP packets and analyzes ICMP responses to determine if the target is vulnerable to heap data leakage.

Description

The Treck TCP/IP stack before 6.0.1.66 improperly handles an IPv4/ICMPv4 Length Parameter Inconsistency, which might allow remote attackers to trigger an information leak.

Exploits (1)

nomisec SCANNER

by Ransc0rp1on · poc

https://github.com/Ransc0rp1on/Ripple20

View Code ZIP pw:eip

This repository contains a Python-based scanner for detecting CVE-2020-11898 (Ripple20), a vulnerability in the Treck TCP/IP stack. The tool sends crafted fragmented IP-in-IP packets and analyzes ICMP responses to determine if the target is vulnerable to heap data leakage.

Classification

Scanner 95%

Attack Type

Info Leak

Complexity

Moderate

Reliability

Reliable

Target: Treck TCP/IP stack

No auth needed

Prerequisites: root/administrator privileges · Scapy library · Python 3.7+ · network connectivity to target

MITRE ATT&CK