Intrusion Prevention

Linux.Kernel.SCTP.sk.ack.backlog.Integer.Underflow

Description

This indicates an attack attempt against an Integer Underflow vulnerability in Linux Kernel SCTP Protocol.
The vulnerability is caused by an error when the vulnerable software handles crafted SCTP packets. A remote attacker can exploit this to cause denial of service conditions on the affected server.

Affected Products

Linux Kernel Project Kernel prior to mainline v3.16-rc1

Impact

Denial of Service: Remote attacker can crash vulnerable systems.

Recommended Actions

Apply the most recent upgrade or patch from the vendor.
http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=f2815633504b442ca0b0605c16bf3d88a3a0fcea

Coverage

IPS (Regular DB)
IPS (Extended DB)

ID	38983
Created	Aug 26, 2014
Updated	May 04, 2022
Risk
CVE ID	CVE-2014-4667
Exploit Prediction Score	4.86%
Default Action	drop
Active
Affected OS	Linux
Affected App	Other

Protect

Detect

Respond

Recover

Identify

Network Security

Endpoint Security

Application Security

Security Operations

Intrusion Prevention

Linux.Kernel.SCTP.sk.ack.backlog.Integer.Underflow

Description

Affected Products

Impact

Recommended Actions

Telemetry

Coverage

News/Research

Research Center

PSIRT Center

Services

By Outbreak

By Solution

By Product

Protect

Detect

Respond

Recover

Identify

Network Security

Endpoint Security

Application Security

Security Operations

Threat Intelligence Center

Resource Center

About

FortiGuard Labs

Partners

Intrusion Prevention

Linux.Kernel.SCTP.sk.ack.backlog.Integer.Underflow

Description

Affected Products

Impact

Recommended Actions

Telemetry

Coverage

Threat Intelligence
Center