Ripple20, akateedzana ekushomeka muTreck's TCP / IP stack inobata akasiyana madhijitari

Darkcrizt

4 maminitsi

Munguva pfupi yapfuura nhau dzakabvarura izvo nezve 19 kushomeka kwakawanikwa mune Treck's proprietary TCP / IP stack, iyo inogona kushandiswa nekutumira mapakeji akagadzirwa.

Izvo zvinokuvadza zvakawanikwa, vakapiwa kodhi kodhi zita Ripple20 uye kumwe kwekunetseka uku kunoonekwa zvakare muZuken Elmic's (Elmic Systems) KASAGO TCP / IP stack, iyo inogovana midzi yakafanana neTrck.

Chinhu chinoshungurudza pamusoro peiyi nhevedzano yekushushikana yakawanikwa ndeyekuti iyo TCP / IP Treck stack inoshandiswa nemidziyo yakawanda maindasitiri, zvekurapa, kutaurirana, zvakadzamidzirwa uye mutengi, kubva kumagetsi marambi kune maprinta uye asingamise magetsi emagetsi), pamwe nesimba, kutakura, kubhururuka, kutengeserana nemafuta ekugadzira mafuta.

Nezve kusagadzikana

Zvinotarisirwa zvinangwa zvekurwiswa uchishandisa iyo TCP / IP Treck stack dzinosanganisira HP network maprinta uye Intel machipisi.

Iko kusanganisirwa kwematambudziko pane iyo TCP / IP Treck stack yakazove chikonzero chechinetso chiri kure Munguva pfupi yapfuura muIntel AMT uye ISM masisitimu anoshandiswa nekutumira network packet.

Intel, HP, Hewlett Packard Enterprise, Baxter, Caterpillar, Digi, Rockwell Automation uye Schneider Electric vakasimbisa kusagadzikana. Pamusoro pevamwe vagadziri makumi matanhatu nevatanhatu, vane zvigadzirwa zvinoshandisa Treck TCP / IP stack, vasati vapindura nyaya, vagadziri vashanu, kusanganisira AMD, vakazivisa kuti zvigadzirwa zvavo hazvisi pasi pezvinhu.

Matambudziko akawanikwa mukuitwa yeiyo IPv4, IPv6, UDP, DNS, DHCP, TCP, ICMPv4 uye ARP protocols, uye zvakakonzerwa nekurongeka kwekugadziriswa kweparameter neiyo saizi yedata (uchishandisa munda une saizi pasina kutarisa saizi chaiyo yedata), zvikanganiso kana uchitarisa ruzivo rwekuisa, kaviri memory isina, kuverenga kubva nzvimbo yekunze-ye-buffer, kuwanda kwakazara, kudzora kwekuwana zvisizvo, uye matambudziko ekugadzirisa tambo ine zero separadzanisi.

Iko kukanganisa kweichi chinetso kuchasiyana nekuda kwekusanganiswa kwekusanganisa uye nguva yekumhanyisa sarudzo dzinoshandiswa mukugadzira akasiyana akasimbwa masisitimu. Uku kusiyanisa kwekushandisa uye kushomeka kwekuonekwa mukati meketani yekuwedzera zvakawedzera dambudziko rekunyatso tarisa zvinoitika kune izvi zvinoshomeka. 

Muchidimbu, munhu asingazivikanwe ari kure anorwisa anogona kushandisa zvakarongedzwa mapaketi mapaketi kukonzera kuramba basa, kuburitsa ruzivo, kana kuita kodhi yekumanikidza.

Matambudziko maviri ane njodzi (CVE-2020-11896, CVE-2020-11897), iyo yakapihwa CVSS nhanho gumi, tendera anorwisa kuti akwanise kuita kodhi yake pachigadzirwa nekutumira IPv10 / UDP kana IPv4 mapakeji neimwe nzira.

Yekutanga nyaya yakakomba inoonekwa pamidziyo ine rutsigiro rwe IPv4 tunnels, uye yechipiri pane IPv6-inogoneswa vhezheni yakaburitswa June 4, 2009 isati yapera. Imwe njodzi yakakomba (CVSS 9) irimo muDNS resolution (CVE-2020-11901) uye inobvumira kodhi yekumhanyisa nekutumira yakakumbirwa yakagadzirirwa chikumbiro cheDNS (iyo nyaya yakashandiswa kuratidza iyo Schneider Electric UPS APC kubira uye inowoneka pamidziyo ine rutsigiro rweDNS).

Nguva kumwe kunetseka CVE-2020-11898, CVE-2020-11899, CVE-2020-11902, CVE-2020-11903, CVE-2020-11905 le bvumira kuziva izvo zvirimo nekutumira mapakeji yakanyatsogadzirwa IPv4 / ICMPv4, IPv6OverIPv4, DHCP, DHCPv6 kana IPv6 ndangariro nzvimbo dzehurongwa. Dzimwe nyaya dzinogona kutungamira mukunyimwa sevhisi kana kuburitswa kwemasara data kubva kune system system.

Mazhinji ekukuvadzwa akagadziriswa paTreck 6.0.1.67 kuburitswa (CVE-2020-11897 nyaya yakatarwa pana 5.0.1.35, CVE-2020-11900 pa6.0.1.41, CVE-2020-11903 pa6.0.1.28, CVE-2020-11908 pa4.7 (1.27).

Sezvo kugadzirira firmware zvidzoreso zvemadhizaini chaiwo zvinogona kutora nguva kana kusagoneka, sezvo Treck stack yakapihwa kweanopfuura makore makumi maviri, akawanda madhijisheni akasiiwa asina kutarisirwa kana kunetsa kugadzirisa.

Vatungamiriri vanorayirwa kuti vaparadzanise zvigadzirwa zvine matambudziko uye vagadzirise kumisikidza kana kuvharira mapakeji ekuongorora masisitimu, firewalls kana ma routers akapatsanurwa mapaketi, vhara IP tunnels (IPv6-in-IPv4 uye IP-in-IP), vhara iyo «sosi nzira», gonesa kuongorora kwe zvisarudzo zvisirizvo mumapaketi eTCP, vharira asina kushandiswa ICMP mameseji ekudzora (MTU Gadziriso uye Kero Mask).


Siya yako yekutaura

Your kero e havazobvumirwi ichibudiswa. Raida minda anozivikanwa ne *

*

*

  1. Inotarisira iyo data: Miguel Ángel Gatón
  2. Chinangwa cheiyo data: Kudzora SPAM, manejimendi manejimendi.
  3. Legitimation: Kubvuma kwako
  4. Kutaurirana kwedata
  5. Dhata yekuchengetedza: Dhatabhesi inobatwa neOccentus Networks (EU)
  6. Kodzero: Panguva ipi neipi iwe unogona kudzora, kupora uye kudzima ruzivo rwako

  1.   manolin akadaro
    inoita 4 makore

    Ini ndaingova wekuchera mugodhi uye PC yangu yakamonerwa, kana saka vakandiudza, ndinogona kuzvigadzirisa pachezvangu kana kuti ndichafanirwa kuzviendesa laptop kugadzirisa

    Pindura manolin