New research has unveiled significant security vulnerabilities in several tunneling protocols, exposing 4.2 million systems globally to various cyberattack risks.
Internet hosts that accept tunneling packets without verifying the sender's identity can be hijacked to perform anonymous attacks and provide access to their networks.
Successful exploitation of the shortcomings could allow adversaries to create one-way proxies, conduct denial-of-service (DoS) attacks, and gain unauthorized access to private networks.
The vulnerabilities stem from tunneling protocols that lack adequate authentication and encryption, enabling attackers to inject malicious traffic into data tunnels.
Collection
[
|
...
]