virus logo FortiClient Vulnerability

RedHat libndp CVE-2016-3698 Privilege Escalation Vulnerability

description-logoDescription

Libndp is a library (used by NetworkManager) that provides a wrapper for the IPv6 Neighbor Discovery Protocol. It also provides a tool named ndptool for sending and receiving NDP messages. Security Fix(es): * It was found that libndp did not properly validate and check the origin of Neighbor Discovery Protocol (NDP) messages. An attacker on a non-local network could use this flaw to advertise a node as a router, allowing them to perform man-in-the-middle attacks on a connecting client, or disrupt the network connectivity of that client. (CVE-2016-3698) Red Hat would like to thank Julien Bernard (Viagnie) for reporting this issue.

affected-products-logoAffected Applications

libndp

CVE References

CVE-2016-3698

Other References

https://rhn.redhat.com/errata/RHSA-2016-1086.html
ID 40547
Created Jan 17, 2020
Description
Updated		 Dec 20, 2023
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon
Coverage FortiClient
OS Linux
Vendor RedHat
Patch auto
Application libndp