CVE-2016-3707

Published: Jun 27, 2016Modified: May 6, 2026

8.1

Vector

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Exploitability: 2.2 / Impact: 5.9

Source: NVD

Description

The icmp_check_sysrq function in net/ipv4/icmp.c in the kernel.org projects/rt patches for the Linux kernel, as used in the kernel-rt package before 3.10.0-327.22.1 in Red Hat Enterprise Linux for Real Time 7 and other products, allows remote attackers to execute SysRq commands via crafted ICMP Echo Request packets, as demonstrated by a brute-force attack to discover a cookie, or an attack that occurs after reading the local icmp_echo_sysrq file.

Affected (4)

Products: Linux: Linux Kernel Rt · Redhat: Enterprise Linux For Real Time, Enterprise Linux For Real Time For Nfv · Novell: Suse Linux Enterprise Real Time Extension

1 product

Linux Kernel Rt

2 products

Enterprise Linux For Real Time

Enterprise Linux For Real Time For Nfv

1 product

Suse Linux Enterprise Real Time Extension

Configuration A

3 vulnerable

Vulnerable Software	Affected Versions
Linux Linux Kernel Rt	Up to 3.10.0
Redhat Enterprise Linux For Real Time	Version 7
Redhat Enterprise Linux For Real Time For Nfv	Version 7

Configuration B

1 vulnerable

Vulnerable Software	Affected Versions
Novell Suse Linux Enterprise Real Time Extension	Version 12.0 sp1

Related CWEs

Improper Access Control

The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor.

References (14)

http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00005.html

Source: secalert@redhat.com

Third Party Advisory

http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00000.html

Source: secalert@redhat.com

Third Party Advisory

http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00007.html

Source: secalert@redhat.com

http://www.openwall.com/lists/oss-security/2016/05/17/1

Source: secalert@redhat.com

https://access.redhat.com/errata/RHSA-2016:1301

Source: secalert@redhat.com

Third Party Advisory

https://access.redhat.com/errata/RHSA-2016:1341

Source: secalert@redhat.com

Third Party Advisory

https://bugzilla.redhat.com/show_bug.cgi?id=1327484

Source: secalert@redhat.com

Issue Tracking

http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00005.html

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00000.html

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00007.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.openwall.com/lists/oss-security/2016/05/17/1

Source: af854a3a-2127-422b-91ae-364da2661108

https://access.redhat.com/errata/RHSA-2016:1301

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

https://access.redhat.com/errata/RHSA-2016:1341

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

https://bugzilla.redhat.com/show_bug.cgi?id=1327484

Source: af854a3a-2127-422b-91ae-364da2661108

Issue Tracking

Timeline

No history available yet.