Microsoft Windows 2008, 7, Vista, 2003, 2000, and XP, when using IPv6, allows remote attackers to determine whether a host is sniffing the network by sending an ICMPv6 Echo Request to a multicast address and determining whether an Echo Reply is sent, as demonstrated by thcping. NOTE: due to a typo, some sources map CVE-2010-4562 to a ProFTPd mod_sql vulnerability, but that issue is covered by CVE-2010-4652.
References
Configurations
Configuration 1 (hide)
|
Information
Published : 2012-02-02 09:55
Updated : 2012-02-02 21:00
NVD link : CVE-2010-4562
Mitre link : CVE-2010-4562
JSON object : View
CWE
CWE-200
Exposure of Sensitive Information to an Unauthorized Actor
Products Affected
microsoft
- windows_7
- windows_2003_server
- windows_vista
- windows_xp
- windows_server_2008
- windows_2000