Multiple Vendor IRDP 漏洞

漏洞信息详情

Multiple Vendor IRDP 漏洞

• CNNVD编号：CNNVD-199908-020
• 危害等级： 高危
  
  
• CVE编号：
  CVE-1999-0875
  
• 漏洞类型：
  
  
  配置错误
  
• 发布时间：
  
  1999-08-11
  
• 威胁类型：
  
  
  远程
  
• 更新时间：
  
  2005-05-02
  
• 厂        商：
  
  microsoft
• 漏洞来源：
  This vulnerability…

使用ICMP路由器恢复协议的DHCP（IRDP）客户端存在漏洞，远程攻击者可以借助此漏洞修改默认路由。

Windows95/98:

The Microsoft Knowledge Base contains an article that gives info on how to disable IRDP. It can be found at:
http://support.microsoft.com/support/kb/articles/q216/1/41.asp

Solaris:

Configure your host to obtain a default gateway through DHCP, static routes, or via the /etc/defaultrouter file. For more information on IRDP refer to in.rdisc’s man-page.
Firewalls:
Block all ICMP Type 9 & Type 10 packets. This should protect against remote Denial of Service attacks.

来源: BID
名称: 578
链接:http://www.securityfocus.com/bid/578

来源: MSKB
名称: Q216141
链接:http://support.microsoft.com/default.aspx?scid=kb;%5BLN%5D;Q216141