ืืื ืึท ืคึผืจืึทืคึผืจืืืึทืืขืจื TCP / IP ืึธื ืืืืื
ื ืึธืืืึทืืึทื ืืึทืคืึทืื ืืึทืจืืึทืฅ ื ืืฆื ืืจืขืง ืก TCP / IP ืึธื ืืืืื ืึทืจืืึทื ื ืขืืขื ืืคึผ ื ืขืฅ ืคึผืจืื ืืขืจืก ืืื ืื ืืขื ืืฉืืคึผืก. ืฆืืืืฉื ืื ืืขืจืข ืืืื, ืคึผืจืึธืืืขืืก ืืื ืื ืืจืขืง TCP / IP ืึธื ืืืืื ืืื ืืขืืืขื ืื ืืจืื ื ืคืื ืื ืืขืฆืืข
ืคึผืจืึธืืืขืืก ืืขื ืขื ืืขืคึฟืื ืขื ืืื ืื ืืืคึผืืึทืืขื ืืืืฉืึทื ืคืื ืื IPv4, IPv6, UDP, DNS, DHCP, TCP, ICMPv4 ืืื ARP ืคึผืจืึธืืึธืงืึธืืก, ืืื ืืขื ืขื ืืขืคึฟืืจื ืืืจื ืคืึทืืฉ ืคึผืจืึทืกืขืกืื ื ืคืื ืืึทืื ืืจืืืก ืคึผืึทืจืึทืืขืืขืจืก (ื ืืฆื ืึท ืืจืืืก ืคืขืื ืึธื ืงืึธื ืืจืึธืืืจื ืื ืคืึทืงืืืฉ ืืึทืื ืืจืืืก), ืขืจืจืึธืจืก ืืื ืงืึธื ืืจืึธืืืจืื ื ืึทืจืืึทื ืฉืจืืึทื ืืื ืคึฟืึธืจืืึทืฆืืข, ืืึธืคึผื ืคืจืื ืคืื ืืึผืจืื, ืืืืก-ืคืื-ืืึทืคืขืจ ืืืืขื ื, ืื ืืึทืืืฉืขืจ ืึธืืืืขืจืคืืึธืื, ืคืึทืืฉ ืึทืงืกืขืก ืงืึธื ืืจืึธื, ืืื ืคึผืจืึธืืืขืืก ืืื ื ืึทื-ืืขืืืืืืขื ืกืืจืื ืืก.
ืื ืฆืืืื ืืขืจืกื ืืขืคืขืจืืขื ืคึผืจืึธืืืขืืก (CVE-2020-11896, CVE-2020-11897), ืืืึธืก ืืขื ืขื ืึทืกืืื ื CVSS ืืืจืื 10, ืืึธืื ืงืึธื ืฆื ืืืื ืขืงืกืึทืงืืืืึทื ืืืืฃ ืึท ืืืื ืืืจื ืฉืืงื ืกืคึผืขืฉืื ืคืึธืจืืึทืืืขื IPv4/UDP ืึธืืขืจ IPv6 ืคึผืึทืงืืฅ. ืืขืจ ืขืจืฉืืขืจ ืงืจืืืืฉ ืคึผืจืึธืืืขื ืืื ืืจืืืก ืืืืฃ ืืขืืืืกืขืก ืืื ืฉืืืฆื ืคึฟืึทืจ IPv4 ืืึทื ืึทืื, ืืื ืื ืจืืข ืืื ืืืขืจืกืืขืก ืคืจืื ืืืืืขืจ 04.06.2009/6/9 ืืื IPv2020 ืฉืืืฆื. ืื ืื ืืขืจ ืงืจืืืืฉ ืืืึทืื ืขืจืึทืืืืืื (CVSS 11901) ืืื ืคืึธืจืฉืืขืื ืืื ืื ืื ืก ืจืขืกืึธืืืืขืจ (CVE-XNUMX-XNUMX) ืืื ืึทืืึทืื ืงืึธื ืืืจืืคืืจืื ื ืืืจื ืฉืืงื ืึท ืกืคึผืขืฆืืขื ืงืจืึทืคืืขื ืื ืก ืืขืื (ืื ืคึผืจืึธืืืขื ืืื ืืขื ืืฆื ืฆื ืืึทืืืืึทืื ืื ืืึทืงืื ื ืคืื Schneider Electric APC UPS ืืื ืืื ืืจืืืก ืืืืฃ ืืขืืืืกืขืก ืืื ืื ืก ืฉืืืฆื).
ืื ืืขืจืข ืืืึทืื ืขืจืึทืืืืืืื CVE-2020-11898, CVE-2020-11899, CVE-2020-11902, CVE-2020-11903, CVE-2020-11905 ืืึธืื ืื ืืื ืืึทืื ืคืื IPv4/ICDHMPv4, IPv6OverIPv4, IPv6OverIPv6, ืฉืืงื ืกืคึผืขืฉืื ืืืืืื ื ืคึผืึทืงืืฅ ืกืืกืืขื ืืึผืจืื ืืขืืืื. ืื ืืขืจืข ืคึผืจืึธืืืขืืก ืงืขื ืจืขืืืืืึทื ืืื ืึธืคึผืืืืงืขื ืื ื ืคืื ืืื ืกื ืึธืืขืจ ืืืงืึทืืืฉ ืคืื ืจืืืืืืฉืืึทื ืืึทืื ืคืื ืกืืกืืขื ืืึทืคืขืจื.
ืจืืึฟ ืคืื ืื ืืืึทืื ืขืจืึทืืืืืืื ืืขื ืขื ืคืึทืจืคืขืกืืืงื ืืื ืืจืขืง 6.0.1.67 (CVE-2020-11897 ืืื ืคืึทืจืคืขืกืืืงื ืืื 5.0.1.35, CVE-2020-11900 ืืื 6.0.1.41, CVE-2020-11903 ืืื 6.0.1.28 ืืื CVE-2020, CVE-11908 4.7.1.27. 20). ืืื ื ืคึผืจืืคึผืขืจืื ื ืคืืจืืืืึทืจืข ืืขืจืืืึทื ืืืงืื ืืขื ืคึฟืึทืจ ืกืคึผืขืฆืืคืืฉ ืืขืืืืกืขืก ืงืขื ืืืื ืืืืืื ืึธืืขืจ ืืืืืขืืืขื (ืืขืจ ืืจืขืง ืกืืึทืง ืืื ืื ืืืฆื ืคึฟืึทืจ ืืขืจ ืืื 6 ืืึธืจ, ืคืืืข ืืขืืืืกืขืก ืืืืืื ืึทื ืืืื ืืืื ื ืึธืืขืจ ืืขื ืขื ืฉืืืขืจ ืฆื ืืขืจืืืึทื ืืืงื), ืึทืืืื ืืกืืจืึทืืึธืจืก ืืขื ืขื ืึทืืืืืืื ืฆื ืืืึธืืืจื ืคึผืจืึธืืืขืืึทืืืง ืืขืืืืกืขืก ืืื ืงืึทื ืคืืืืขืจ ืคึผืึทืงืึทื ืืืจืืงืืง ืกืืกืืขืืขื, ืคืืจืขืืืึทืืืก. ืึธืืขืจ ืจืึธืืืขืจืก ืฆื ื ืึธืจืืึทืืืื ืึธืืขืจ ืคืึทืจืฉืคึผืึทืจื ืคืจืึทืืืึทื ืืื ืคึผืึทืงืืฅ, ืคืึทืจืฉืคึผืึทืจื IP ืืึทื ืึทืื (IPv4-in-IPv6 ืืื IP-in-IP), ืคืึทืจืฉืคึผืึทืจื "ืืงืืจ ืจืืืื ื", ืืขืื ืืืจืืงืืง ืคืื ืคืึทืืฉ ืึธืคึผืฆืืขืก ืืื ืืงืคึผ ืคึผืึทืงืืฅ, ืคืึทืจืฉืคึผืึทืจื ืึทื ืืืื ICMP ืงืึธื ืืจืึธื ืึทืจืืืงืืขื (MTU ืึทืคึผืืืื ืืื ืึทืืจืขืก ืืึทืกืงืข), ืืืกืืืืึทื IPvXNUMX ืืืืืืงืึทืกื ืืื ืจืืืขืจืขืงื ืื ืก ืคึฟืจืืื ืฆื ืึท ืืืืขืจ ืจืขืงืืจืกืืืืข ืื ืก ืกืขืจืืืขืจ.
ืืงืืจ: opennet.ru