mirror of
https://github.com/0xMarcio/cve.git
synced 2026-05-23 19:04:02 +02:00
0xMarcio
1.3 KiB
1.3 KiB
CVE-2020-10136
Description
IP-in-IP protocol specifies IP Encapsulation within IP standard (RFC 2003, STD 1) that decapsulate and route IP-in-IP traffic is vulnerable to spoofing, access-control bypass and other unexpected behavior due to the lack of validation to verify network packets before decapsulation and routing.
POC
Reference
- https://kb.cert.org/vuls/id/636397/
- https://www.digi.com/resources/security
- https://www.kb.cert.org/vuls/id/636397
Github
- https://github.com/ARPSyndicate/cve-scores
- https://github.com/CERTCC/PoC-Exploits/tree/master/cve-2020-10136
- https://github.com/GustavoHGP/ipeeyoupeewepee
- https://github.com/PapayaJackal/ipeeyoupeewepee
- https://github.com/alphaSeclab/sec-daily-2020
- https://github.com/hktalent/bug-bounty
- https://github.com/nomi-sec/PoC-in-GitHub
- https://github.com/vanhoefm/tunneltester