CVE-2016-3707 vulnerability in Linux and Other Products
Published on June 27, 2016

The icmp_check_sysrq function in net/ipv4/icmp.c in the kernel.org projects/rt patches for the Linux kernel, as used in the kernel-rt package before 3.10.0-327.22.1 in Red Hat Enterprise Linux for Real Time 7 and other products, allows remote attackers to execute SysRq commands via crafted ICMP Echo Request packets, as demonstrated by a brute-force attack to discover a cookie, or an attack that occurs after reading the local icmp_echo_sysrq file.

Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory NVD

Products Associated with CVE-2016-3707

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2016-3707 are published in these products:

Linux Kernel Rt

Red Hat Enterprise Linux For Real Time

Red Hat Enterprise Linux Real Time Nfv

Novell Suse Linux Enterprise Real Time Extension

Exploit Probability

EPSS

1.79%

Percentile

82.48%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2016-3707 vulnerability in Linux and Other ProductsPublished on June 27, 2016

Products Associated with CVE-2016-3707

Exploit Probability

CVE-2016-3707 vulnerability in Linux and Other Products
Published on June 27, 2016