Check Point Advisories

Linux Kernel sctp_process_unk_param SCTPChunkInit Buffer Overflow (CVE-2010-1173)

Vulnerability
Protection

Check Point Reference:	CPAI-2010-077
Date Published:	11 May 2010
Severity:	High
Last Updated:	Sunday 14 February, 2016
Source:
Industry Reference:	CVE-2010-1173
Protection Provided by:	Security Gateway R81, R80, R77, R75, R71, R70
Who is Vulnerable?
Vulnerability Description	Linux is a popular open-source operating system. Along with established and mature standards, the operating systems supports a large number of new and experimental protocols, such as IPv6, SCTP, DCCP, and so on. A buffer overflow vulnerability exists in Linux Kernel Organization's Linux kernel. The vulnerability is due to a boundary error in the "sctp_process_unk_param()" function code in the Linux Kernel when handling an "INIT" chunk with multiple malformed parameters. A remote attacker could exploit this issue via a malformed chunk. Successful exploitation would cause a memory overflow that could lead to a system panic resulting in a denial of service condition, or allow the attacker to execute arbitrary code on the affected system.

Protection Overview

This protection will detect and block attempts to exploit this vulnerability.

In order for the protection to be activated, update your Security Gateway product to the latest IPS update. For information on how to update IPS, go to SBP-2006-05, click on Protection tab and select the version of your choice.

Security Gateway R80 / R77 / R75 / R71 / R70

In the IPS tab, click Protections and find the Linux Kernel sctp_process_unk_param SCTPChunkInit Buffer Overflow protection using the Search tool and Edit the protection's settings.
Install policy on all Security Gateways.

This protection's log will contain the following information:

Attack Name: ICMP Protocol Violation.
Attack Information: Linux kernel sctp_process_unk_param SCTPChunkInit buffer overflow