A security issue has been found in the Linux kernel’s implementation of
challenge ACKs as specified in RFC 5961. An attacker which knows a
connection’s client IP, server IP and server port can abuse the
challenge ACK mechanism to determine the accuracy of a normally ‘blind’
attack on the client or server.

Successful exploitation of this flaw could allow a remote attacker to
inject or control a TCP stream contents in a connection between a Linux
device and its connected client/server.

OSVersionArchitecturePackageVersionFilename
anyanyanylinux-lts< 4.4.19-1UNKNOWN

OS	Version	Architecture	Package	Version	Filename
any	any	any	linux-lts	< 4.4.19-1	UNKNOWN

References

seclists.org/oss-sec/2016/q3/44

access.redhat.com/security/cve/CVE-2016-5696

git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=75ff39ccc1bd5d3c455b6822ab09e533c551f758

nessus 46

redhatcve 1

openvas 33

ubuntucve 1

paloalto 1

f5 2

ibm 2

oraclelinux 6

cvelist 1

archlinux 3

centos 2

veracode 1

redhat 8

arista 1

fortinet 1

debiancve 1

thn 2

nvd 2

symantec 1

huawei 1

cve 2

prion 2

threatpost 1

ubuntu 8

fedora 2

debian 3

osv 2

amazon 1

mageia 3

suse 11

androidsecurity 1

lenovo 1

nessus

RHEL 6 : kernel (RHSA-2016:1664)

2016-08-24 00:00:00

Scientific Linux Security Update : kernel on SL7.x x86_64 (20160818)

2016-08-22 00:00:00

Arista Networks EOS tcp_input Challenge ACKs Shared Counter Disclosure (SA0023)

2018-02-28 00:00:00

redhatcve

CVE-2016-5696

2016-07-12 08:48:22

openvas

RedHat Update for kernel RHSA-2016:1664-01

2016-08-24 00:00:00

Palo Alto PAN-OS Kernel Vulnerability

2017-05-23 00:00:00

Sophos XG Firewall < 16.01.0 Multiple Vulnerabilities

2016-12-16 00:00:00

ubuntucve

CVE-2016-5696

2016-08-06 00:00:00

paloalto

Kernel Vulnerability

2017-05-23 03:00:00

K46514822 : Linux TCP stack vulnerability CVE-2016-5696

2016-08-26 00:00:00

SOL46514822 - Linux TCP stack vulnerability CVE-2016-5696

2016-08-26 00:00:00

ibm

Security Bulletin: Vulnerability in Linux Kernel affects SAN Volume Controller, Storwize family and FlashSystem V9000 products (CVE-2016-5696)

2023-03-29 01:48:02

Security Bulletin: Vulnerabilities in the Linux kernel affect PowerKVM

2018-06-18 01:34:02

oraclelinux

kernel security and bug fix update

2016-08-18 00:00:00

Unbreakable Enterprise kernel security update

2016-08-15 00:00:00

Unbreakable Enterprise kernel security update

2016-08-15 00:00:00

cvelist

CVE-2016-5696

2016-08-06 20:00:00

archlinux

linux-zen: information disclosure

2016-08-17 00:00:00

linux: information disclosure

2016-08-14 00:00:00

linux-grsec: information disclosure

2016-08-14 00:00:00

centos

kernel, perf, python security update

2016-08-20 02:00:21

kernel, perf, python security update

2016-08-23 20:59:58

veracode

TCP Session Hijack

2019-01-15 09:12:58

redhat

(RHSA-2016:1631) Important: realtime-kernel security and bug fix update

2016-08-18 15:32:31

(RHSA-2016:1632) Important: kernel-rt security and bug fix update

2016-08-18 15:33:21

(RHSA-2016:1633) Important: kernel security and bug fix update

2016-08-18 15:37:10

arista

Security Advisory 0023

2016-08-15 00:00:00

fortinet

Linux kernel - challenge ack information leak

2017-04-04 00:00:00

debiancve

CVE-2016-5696

2016-08-06 20:59:05

thn

Linux TCP Flaw allows Hackers to Hijack Internet Traffic and Inject Malware Remotely

2016-08-10 23:18:00

Internet Traffic Hijacking Linux Flaw Affects 80% of Android Devices

2016-08-16 01:31:00

nvd

CVE-2016-5696

2016-08-06 20:59:05

CVE-2016-5389

2016-07-13 16:59:00

symantec

SA131 : TCP Session Hijacking in Operating Systems Supporting RFC 5961

2016-09-14 08:00:00

huawei

Security Advisory - TCP Connection Hijack Vulnerability

2016-09-07 00:00:00

cve

CVE-2016-5696

2016-08-06 20:59:05

CVE-2016-5389

2016-07-13 16:59:00

prion

Design/Logic Flaw

2016-08-06 20:59:00

Design/Logic Flaw

2016-07-13 16:59:00

threatpost

Serious TCP Bug in Linux Systems Allows Traffic Hijacking

2016-08-10 12:55:01

ubuntu

Linux kernel (OMAP4) vulnerabilities

2016-08-29 00:00:00

Linux kernel vulnerabilities

2016-08-29 00:00:00

Linux kernel (Trusty HWE) vulnerabilities

2016-08-29 00:00:00

fedora

[SECURITY] Fedora 23 Update: kernel-4.6.4-201.fc23

2016-07-19 22:24:43

[SECURITY] Fedora 24 Update: kernel-4.6.4-301.fc24

2016-07-20 00:27:07

debian

[SECURITY] [DSA 3659-1] linux security update

2016-09-04 17:24:55

[SECURITY] [DSA 3659-1] linux security update

2016-09-04 17:24:55

[SECURITY] [DLA 609-1] linux security update

2016-09-03 11:53:47

osv

linux - security update

2016-09-04 00:00:00

linux - security update

2016-09-03 00:00:00

amazon

Medium: kernel

2016-08-01 13:30:00

mageia

Updated kernel-tmb packages fix security vulnerabilities

2016-08-31 18:32:33

Updated kernel packages fix security vulnerability

2016-07-31 23:39:13

Update request kernel-linus-4.4.26-1 fixes security issues

2016-11-04 10:58:56

suse

Security update for the Linux Kernel (important)

2016-12-09 18:11:19

Security update for the Linux Kernel (important)

2016-12-06 13:08:43

Security update for the Linux Kernel (important)

2016-10-25 19:06:08

androidsecurity

Android Security Bulletin—October 2016

2016-10-03 00:00:00

lenovo

AMI MegaRAC SP-X BMC Vulnerabilities - Lenovo Support US

2020-04-13 19:22:04

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

0.004 Low

EPSS

Percentile

75.1%

JSON

Related for ASA-201608-17