A flaw in TCP implementation threatens users
A flaw in TCP implementation in Linux kernel 3.6 and newer might allow malware injection or traffic hijacking. This kernel version is widely used, affecting Android devices and Smart TVs.
The vulnerability allows guessing TCP sequence number using only IP addresses from both sides, allowing redirecting traffic using an spoofed IP without an MITM scheme. Besides, it can be used to downgrade HTTP connection, reducing security for users.
References:
- 10/08/2016 thehackernews.com Linux TCP Flaw allows Hackers to Hijack Internet Traffic and Inject Malware Remotely
- 10/08/2016 threatpost.com SERIOUS TCP BUG IN LINUX SYSTEMS ALLOWS TRAFFIC HIJACKING
- 15/08/2016 securityintelligence.com Linux Has a TCP Flaw, Researchers Find