CVE-2006-1242

Publication date 15 March 2006

Last updated 24 July 2024

Ubuntu priority

The ip_push_pending_frames function in Linux 2.4.x and 2.6.x before 2.6.16 increments the IP ID field when sending a RST after receiving unsolicited TCP SYN-ACK packets, which allows remote attackers to conduct an Idle Scan (nmap -sI) attack, which bypasses intended protections against such attacks.

Status

Show unmaintained releases

How can I get the fixes?
What do statuses mean?

References

MITRE
NVD
Launchpad
Debian

Related Ubuntu Security Notices (USN)

USN-281-1
Linux kernel vulnerabilities
4 May 2006

Other references

https://www.cve.org/CVERecord?id=CVE-2006-1242