Unrated severityNVD Advisory· Published Oct 3, 2008· Updated Apr 23, 2026
CVE-2008-2476
CVE-2008-2476
Description
The IPv6 Neighbor Discovery Protocol (NDP) implementation in (1) FreeBSD 6.3 through 7.1, (2) OpenBSD 4.2 and 4.3, (3) NetBSD, (4) Force10 FTOS before E7.7.1.1, (5) Juniper JUNOS, and (6) Wind River VxWorks 5.x through 6.4 does not validate the origin of Neighbor Discovery messages, which allows remote attackers to cause a denial of service (loss of connectivity) or read private network traffic via a spoofed message that modifies the Forward Information Base (FIB).
Affected products
10- cpe:2.3:o:juniper:jnos:*:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
24- secunia.com/advisories/32112nvdVendor Advisory
- secunia.com/advisories/32117nvdVendor Advisory
- security.freebsd.org/advisories/FreeBSD-SA-08:10.nd6.ascnvdVendor Advisory
- www.kb.cert.org/vuls/id/472363nvdUS Government Resource
- www.kb.cert.org/vuls/id/MAPG-7H2RY7nvdUS Government Resource
- www.kb.cert.org/vuls/id/MAPG-7H2S68nvdUS Government Resource
- ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2008-013.txt.ascnvd
- secunia.com/advisories/32116nvd
- secunia.com/advisories/32133nvd
- secunia.com/advisories/32406nvd
- securitytracker.com/idnvd
- support.apple.com/kb/HT3467nvd
- www.openbsd.org/errata42.htmlnvd
- www.openbsd.org/errata43.htmlnvd
- www.securityfocus.com/bid/31529nvd
- www.securitytracker.com/idnvd
- www.securitytracker.com/idnvd
- www.vupen.com/english/advisories/2008/2750nvd
- www.vupen.com/english/advisories/2008/2751nvd
- www.vupen.com/english/advisories/2008/2752nvd
- www.vupen.com/english/advisories/2009/0633nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/45601nvd
- oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5670nvd
- www.juniper.net/alerts/viewalert.jspnvd
News mentions
0No linked articles in our index yet.