Intrusion Prevention

Wind.River.VxWorks.TCP.Option.Connection.DoS

Description

This indicates an attack attempt to exploit a Denial of Service Vulnerability in Wind River Systems VxWorks.
A remote, unauthenticated attacker can exploit this vulnerability by sending TCP segments with spoofed source IP address of a TCP endpoint connected to a vulnerable service on VxWorks. One of these packets will cause the TCP connection to abnormally terminate. In this manner, an attacker can affect a denial-of-service by arbitrarily terminating any TCP connection that a vulnerable VxWorks has open.

Affected Products

Wind River Systems VxWorks 6.5 and above

Impact

Denial of Service: Remote attackers can crash vulnerable systems.

Recommended Actions

Apply the most recent upgrade or patch from the vendor.
https://www.windriver.com/security/announcements/tcp-ip-network-stack-ipnet-urgent11/security-advisory-ipnet/

CVE References

CVE-2019-12258