CVE-2020-11913

Vulnerability

CVE-2020-11913 is an out-of-bounds read vulnerability in the IPv6 processing component of the Treck TCP/IP stack, affecting versions prior to 6.0.1.66. The bug resides in the stack's handling of crafted IPv6 packets and is one of the Ripple20 vulnerabilities disclosed by JSOF [1]. The Treck stack is widely used in embedded systems, including industrial control and medical devices [1].

Exploitation

An unauthenticated attacker with network access can exploit this vulnerability by sending a specially crafted IPv6 packet to a device running a vulnerable version of the Treck stack. No authentication or user interaction is required. The out-of-bounds read occurs when the stack processes the malformed packet, potentially allowing the attacker to read memory beyond the intended buffer [1].

Impact

Successful exploitation can lead to information disclosure via the out-of-bounds read. Depending on the device's configuration and the stack's build options, this may enable further attacks such as denial of service or arbitrary code execution [1]. The overall impact varies across implementations, but remote code execution is possible in some scenarios [1].

Mitigation

The Treck IP stack should be updated to version 6.0.1.67 or later [1]. Vendors such as Dell and Cisco have released patches for affected products [3][4]. As a workaround, network administrators can block anomalous IPv6 traffic using deep packet inspection or firewall rules [1]. Users should contact their device vendor for specific updates [1].