Researchers from the University of California, Riverside (UCR) have identified the vulnerability as CVE-2016-5696. It is considered as a “subtle flaw” available in the form of ‘side channels’ in Linux operating system since late 2012. The flaw can enable attackers to infer the TCP sequence numbers associated with a particular connection to track users’ online activity as well as terminate existing connections and even inject false material during a communication.
Linux TCP bug lets attackers remotely hijack web traffic was originally published on iSeeTech