This script is Copyright (C) 2006-2014 Tenable Network Security, Inc.
It is possible to crash the remote host by sending it a malformed SCTP
There is a flaw in the Linux kernel on the remote host that causes a
kernel panic when it receives an SCTP packet with a chunk data packet
of length 0. An attacker can leverage this flaw to crash the remote
host. Additionally, other types of crafted packets can cause a remote
denial of service in various SCTP related functions.
Note that successful exploitation of this issue requires that the
kernel support SCTP protocol connection tracking.
See also :
Upgrade to Linux kernel 18.104.22.168 / 22.214.171.124 or later.
Risk factor :
High / CVSS Base Score : 7.8
CVSS Temporal Score : 5.8
Public Exploit Available : false
Family: Denial of Service
Nessus Plugin ID: 21333 (linux_sctp_chunk_header_dos.nasl)
Get Nessus Professional to scan unlimited IPs, run compliance checks & moreBuy Nessus Professional Now