Ripple20, o se faʻasologa o mea vaivai i le Treck's TCP / IP faʻapipiʻi aʻafia ai masini eseese

Talu ai nei na tala ai le talafou tusa o le 19 vaivaiga na maua i le Treck's proprietary TCP / IP stack, lea e mafai ona faʻaaogaina e ala i le lafoina o ni afifi faʻapitoa fuafuaina.

O mea vaivai na maua, na tofia i le numera igoa Ripple20 ma o nisi o nei vaivaiga o loʻo aliali mai foi i le Zuken Elmic's (Elmic Systems) KASAGO TCP / IP stack, lea e tutusa aʻa masani ma Treck.

O le mea popole e uiga i lenei faʻasologa o vaivaiga maua o lena o le TCP / IP Treck stack e faʻaaogaina e le tele o masini fale gaosi oloa, faʻafomaʻi, fesoʻotaʻiga, tuʻufaʻatasia ma tagata faʻatau, mai lamepa poto i masini lolomi ma sapalai o paoa e le faʻalavelaveina), faʻapea foʻi ma le malosi, felauaiga, vaʻalele, fefaʻatauaiga ma le gaosiga o suauʻu.

E uiga i mea vaivai

Manatu taua mo osofaʻiga i le faʻaaogaina o le Treck TCP / IP stack o loʻo aofia ai masini lolomi laina HP ma chips Intel.

Le aofia ai o faʻafitauli luga o le TCP / IP Treck faʻaputuga ua aliali mai o le mafuaʻaga mo le mamao ese vaivai Talu ai nei i le Intel AMT ma ISM subsystems faʻaogaina e ala i le lafoina o se network packet.

Intel, HP, Hewlett Packard Enterprise, Baxter, Caterpillar, Digi, Rockwell Automation ma Schneider Electric faʻamaonia le vaivai. I se faʻaopopoga i isi kamupani gaosi oloa e 66, o latou oloa o loʻo faʻaaogaina le Treck TCP / IP stack, e leʻi tali atu lava i mataupu, e 5 kamupani gaosi, e aofia ai ma le AMD, na faʻalauiloa mai e leʻi aafia a latou oloa i mataupu.

Na maua ni faʻafitauli i le faʻatinoina o IPv4, IPv6, UDP, DNS, DHCP, TCP, ICMPv4 ma ARP faʻavae, ma na mafua mai i le le saʻo o le faʻagaioiga o faʻaupuga ma le tele o faʻamatalaga (faʻaaogaina o se fanua ma se tele e aunoa ma le siakiina o le moni tele o faʻamatalaga), mea sese pe a siakiina le faʻauluina faʻamatalaga, faʻalua manaʻoga saoloto, faitau mai o se vaega i fafo atu o le buffer, integer overflows, le sao o le ulufale faʻatonutonu, ma faʻafitauli le faʻagaoioina o manoa ma le zero vavaeʻese.

O le aʻafiaga o nei vaivaiga o le a eseese ona o le tuʻufaʻatasia o le tuʻufaʻatasia ma le faʻaleaogaina o filifiliga e faʻaaoga pe a atiaʻe eseʻese sisiva auala. O lenei eseʻesega o faʻatinoga ma le le lava o vaʻaia i totonu o le sapalai o oloa ua faʻateleina ai le faʻafitauli o le iloiloina saʻo o le aʻafiaga o nei tulaga vaivai. 

I se faapuupuuga, o se unauthenticated maotua osofaʻiga mafai ona faʻaaoga faʻapitoa fausiaina upega afifiina e mafua ai le teʻena o le tautua, faʻaalia faʻamatalaga, pe faʻatinoina le le tonu tulafono.

O Lua Mataupu e Sili Ona Mataʻutia (CVE-2020-11896, CVE-2020-11897), lea ua tofia CVSS tulaga 10, faʻatagaina se tagata osofaʻi ona mafai ona faʻatino lana tulafono i luga o le masini e ala i le lafoina o IPv4 / UDP poʻo IPv6 ato i se auala faapitoa.

O le uluaʻi faʻafitauli matuia e aliali mai luga o masini ma le lagolagosua mo IPv4 tunnels, ma le lona lua i luga o le IPv6-mafai kopi na faʻamatuʻu mai luma Iuni 4, 2009. O le isi faitioga faigata (CVSS 9) o loʻo i ai i le DNS resolver (CVE-2020-11901 ) ma faʻatagaina le tulafono e tamoe i le tuʻuina atu o se manaʻoga faapitoa DNS talosaga (o le lomiga na faʻaaogaina e faʻaalia ai le Schneider Electric UPS APC hack ma aliali mai luga o masini ma DNS lagolago).

A o isi tulaga vaivai CVE-2020-11898, CVE-2020-11899, CVE-2020-11902, CVE-2020-11903, CVE-2020-11905 le faʻatagaina ia iloa mea i le lafoina afifi faʻapitoa fuafuaina IPv4 / ICMPv4, IPv6OverIPv4, DHCP, DHCPv6 poʻo IPv6 manatua vaega o le polokalama. O isi mataupu e mafai ona taitai atu ai i le faafitia o le tautua po o leakage o toega faʻamaumauga mai faiga buffers.

O le tele o mea vaivai na faʻaleleia i luga o Treck 6.0.1.67 faʻamalolo (CVE-2020-11897 lomiga faʻamau i le 5.0.1.35, CVE-2020-11900 i le 6.0.1.41, CVE-2020-11903 i le 6.0.1.28, CVE-2020-11908 i le 4.7 . 1.27).

Talu ai o le sauniaina o firmware firmware mo ni masini maʻoti e mafai ona tele le taimi pe le mafai foi ona o le Treck stack ua sapalai mo le sili atu i le 20 tausaga, tele masini na tuua le vaʻaia pe faʻalavelave e faʻafou.

Fautuaina le pulega e tuʻu eseʻese masini faʻafitauli ma configure normalization poʻo poloka i afifi asiasiga sisitema, pupuni poʻo taʻavale faʻavasega afifi, poloka IP tunnels (IPv6-in-IPv4 ma IP-in-IP), poloka le « mafuaʻaga faʻasolosolo », faʻatagaina le asiasia o filifiliga sese i le TCP afifi, poloka poloka le faʻaaogaina le ICMP (MTU Update ma le Address Mask).


O mataupu o le tusitusiga e tausisi ia tatou mataupu silisili o amio lelei faʻatonu. E lipotia se mea sese kiliki iinei.

O se tala, tuʻu lau

Tuʻu lau faamatalaga

o le a le lomia lou tuatusi imeli.

*

*

  1. E tali atu mo faʻamatalaga: Miguel Ángel Gatón
  2. Faamoemoega o faʻamatalaga: Pulea le SPAM, faʻamatalaga pulega.
  3. Tulaga faʻatulafonoina: Lau maliega
  4. Fesoʻotaʻiga o faʻamatalaga: O faʻamatalaga o le a le fesoʻotaʻi atu i isi vaega vagana i tulafono faʻatulafonoina.
  5. Teuina o faʻamatalaga: Faʻamaumauga tuʻufaʻatasia e Occentus Networks (EU)
  6. Aia Tatau: I soo se taimi e mafai ai ona e faʻatapulaʻaina, toe maua ma aveʻese au faʻamatalaga.

  1.   manolin malo

    Sa naʻo laʻu miliutu ma sa mimilo laʻu PC, pe na latou taʻu mai ia te aʻu, e mafai ona ou lipeaina e aʻu pe o le a ou aveina i lipea komepiuta