Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveMitreCVE-2004-1060
HistoryApr 13, 2005 - 4:00 a.m.

CVE-2004-1060

2005-04-1304:00:00
mitre
web.nvd.nist.gov
67
cve-2004-1060
path mtu discovery attack
pmtud
denial of service
icmp
tcp/ip
nvd

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

AI Score

7.6

Confidence

High

EPSS

0.965

Percentile

99.6%

JSON

Multiple TCP/IP and ICMP implementations, when using Path MTU (PMTU) discovery (PMTUD), allow remote attackers to cause a denial of service (network throughput reduction for TCP connections) via forged ICMP (“Fragmentation Needed and Don’t Fragment was Set”) packets with a low next-hop MTU value, aka the “Path MTU discovery attack.” NOTE: CVE-2004-0790, CVE-2004-0791, and CVE-2004-1060 have been SPLIT based on different attacks; CVE-2005-0065, CVE-2005-0066, CVE-2005-0067, and CVE-2005-0068 are related identifiers that are SPLIT based on the underlying vulnerability. While CVE normally SPLITs based on vulnerability, the attack-based identifiers exist due to the variety and number of affected implementations and solutions that address the attacks instead of the underlying vulnerabilities.

Affected configurations

Nvd
Node
icmpicmp
OR
tcptcp
VendorProductVersionCPE
icmpicmp*cpe:2.3:a:icmp:icmp:*:*:*:*:*:*:*:*
tcptcp*cpe:2.3:a:tcp:tcp:*:*:*:*:*:*:*:*

References

Related

cve 7
cvelist 8
nvd 8
securityvulns 5
nessus 22
cert 1
ubuntucve 1
f5 8
exploitdb 5
exploitpack 4
seebug 5
zdt 1
openvas 2
checkpoint_advisories 3
redhat 3
cve
cve
CVE-2004-0791
2005-04-13 04:00:00
CVE-2005-0068
2005-01-19 05:00:00
CVE-2005-0066
2005-01-19 05:00:00
cvelist
cvelist
CVE-2005-0068
2005-01-19 05:00:00
CVE-2004-1060
2005-04-13 04:00:00
CVE-2004-0790
2005-04-13 04:00:00
nvd
nvd
CVE-2005-0068
2004-12-22 05:00:00
CVE-2004-0791
2005-04-12 04:00:00
CVE-2005-0065
2005-05-02 04:00:00
securityvulns
securityvulns
UnixWare ICMP Message Handling Denial of Service
2005-09-05 00:00:00
[security bulletin] SSRT4884 HP-UX TCP/IP Remote Denial of Service (DoS)
2005-12-08 00:00:00
HPSBTU01210 SSRT4743, SSRT4884 rev.0 - HP Tru64 UNIX TCP/IP remote Denial of Service (DoS)
2005-07-19 00:00:00
nessus
nessus
Crafted ICMP Messages Can Cause Denial of Service - Cisco Systems
2010-09-01 00:00:00
F5 Networks BIG-IP : Insufficient validation of ICMP error messages (K23440942)
2017-05-08 00:00:00
HP-UX PHNE_33395 : HP-UX TCP/IP Remote Denial of Service (DoS) (HPSBUX01164 SSRT4884 rev.9)
2005-08-01 00:00:00
cert
cert
TCP/IP implementations do not adequately validate ICMP error messages
2005-04-12 00:00:00
ubuntucve
ubuntucve
CVE-2004-0790
2005-04-12 00:00:00
f5
f5
K23440942 : Insufficient validation of ICMP error messages CVE-2004-0790 (11.x - 13.x)
2017-05-05 00:00:00
K15792 : Path MTU discovery vulnerability CVE-2004-1060
2015-09-16 00:00:00
SOL15792 - Path MTU discovery vulnerability CVE-2004-1060
2014-11-06 00:00:00
exploitdb
exploitdb
Multiple OS (Win32/Aix/Cisco) - Crafted ICMP Messages Denial of Service (MS05-019)
2005-04-20 00:00:00
Multiple Vendor ICMP Implementation - Spoofed Source Quench Packet Denial of Service
2005-04-12 00:00:00
Multiple Vendor ICMP Message Handling - Denial of Service
2005-04-12 00:00:00
exploitpack
exploitpack
Multiple Vendor ICMP Implementation - Spoofed Source Quench Packet Denial of Service
2005-04-12 00:00:00
Multiple OS (Win32AixCisco) - Crafted ICMP Messages Denial of Service (MS05-019)
2005-04-20 00:00:00
Multiple Vendor ICMP Implementation - Malformed Path MTU Denial of Service
2005-04-12 00:00:00
seebug
seebug
Multiple OS (win32/aix/cisco) Crafted ICMP Messages DoS Exploit
2005-04-20 00:00:00
Multiple Vendor ICMP Implementation Spoofed Source Quench Packet DoS
2014-07-01 00:00:00
Multiple OS (Win32/Aix/Cisco) - Crafted ICMP Messages DoS Exploit
2014-07-01 00:00:00
zdt
zdt
Multiple OS (win32/aix/cisco) Crafted ICMP Messages DoS Exploit
2005-04-20 00:00:00
openvas
openvas
Microsoft Windows Internet Protocol Validation Remote Code Execution Vulnerability
2011-11-21 00:00:00
Microsoft Windows Internet Protocol Validation RCE Vulnerability
2011-11-21 00:00:00
checkpoint_advisories
checkpoint_advisories
Multiple Vendor ICMP Connection Reset Denial of Service - High Confidence (CVE-2004-0790)
2013-04-30 00:00:00
Multiple Vendor ICMP Connection Reset Denial of Service (CVE-2004-0790)
2010-02-28 00:00:00
Multiple Vendor ICMP Source Quench Denial of Service (CVE-2004-0791)
2010-02-28 00:00:00
redhat
redhat
(RHSA-2005:043) kernel security update
2005-01-18 00:00:00
(RHSA-2005:016) kernel security update
2005-01-21 00:00:00
(RHSA-2005:017) kernel security update
2005-01-21 00:00:00

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

AI Score

7.6

Confidence

High

EPSS

0.965

Percentile

99.6%

JSON
Related for CVE-2004-1060
cve7cvelist8nvd8securityvulns5nessus22cert1ubuntucve1f58exploitdb5exploitpack4seebug5zdt1openvas2checkpoint_advisories3redhat3