CVE-2016-3707

CVE Database · CVE-2016-3707

CVE-2016-3707

· N/AModified

CVSS v3.1

N/A

EPSS

3.39%

Published

Jun 27, 2016

Modified

May 6, 2026

Public PoC / Exploit (1)

All weaponized →

TrickestTrickest PoC index

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

The icmp_check_sysrq function in net/ipv4/icmp.c in the kernel.org projects/rt patches for the Linux kernel, as used in the kernel-rt package before 3.10.0-327.22.1 in Red Hat Enterprise Linux for Real Time 7 and other products, allows remote attackers to execute SysRq commands via crafted ICMP Echo Request packets, as demonstrated by a brute-force attack to discover a cookie, or an attack that occurs after reading the local icmp_echo_sysrq file.

Weaknesses (CWE)

CWE-284

Affected Products (4)

linux · linux_kernel-rtvulnerable

redhat · enterprise_linux_for_real_timevulnerable

redhat · enterprise_linux_for_real_time_for_nfvvulnerable

novell · suse_linux_enterprise_real_time_extensionvulnerable

References (14)

http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00005.html

Third Party Advisory

http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00000.html

Third Party Advisory