SCTP.HEARTBEAT.chunks.Bombing.Attack

description-logoDescription

This indicates an attack attempt against a SCTP Amplification vulnerability in SCTP Protocol.
The vulnerability is caused by an error when the vulnerable software handles crafted SCTP packets. It allows a remote attacker to crash vulnerable systems by sending lots of HEARTBEAT chunks in one packet.

affected-products-logoAffected Products

SCTP Protocol

Impact logoImpact

Denial of Service: Remote attacker can crash vulnerable systems.

recomended-action-logoRecommended Actions

Make sure SCTP endpoint implement bundling on the sending side and not send multiple packets in response.

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)