Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
freebsdFreeBSD3EC8F43B-E8EF-11D9-B875-0001020EED82
HistoryJun 29, 2005 - 12:00 a.m.

kernel -- TCP connection stall denial of service

2005-06-2900:00:00
vuxml.freebsd.org
19

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

0.931 High

EPSS

Percentile

99.1%

JSON

Problem Description
Two problems have been discovered in the FreeBSD TCP stack.
First, when a TCP packets containing a timestamp is
received, inadequate checking of sequence numbers is
performed, allowing an attacker to artificially increase the
internal “recent” timestamp for a connection.
Second, a TCP packet with the SYN flag set is accepted for
established connections, allowing an attacker to overwrite
certain TCP options.
Impact
Using either of the two problems an attacker with knowledge
of the local and remote IP and port numbers associated with
a connection can cause a denial of service situation by
stalling the TCP connection. The stalled TCP connection my
be closed after some time by the other host.
Workaround
In some cases it may be possible to defend against these
attacks by blocking the attack packets using a firewall.
Packets used to effect either of these attacks would have
spoofed source IP addresses.

OSVersionArchitecturePackageVersionFilename
FreeBSDanynoarchfreebsd= 5.4UNKNOWN
FreeBSDanynoarchfreebsd< 5.4_3UNKNOWN

Related

freebsd_advisory 1
securityvulns 2
f5 2
ubuntucve 1
openvas 2
cve 2
nessus 1
checkpoint_advisories 1
cvelist 2
cert 1
nvd 2
redhatcve 1
freebsd_advisory
freebsd_advisory
FreeBSD-SA-05:15.tcp
2005-06-29 00:00:00
securityvulns
securityvulns
FreeBSD Security Advisory FreeBSD-SA-05:15.tcp
2005-06-30 00:00:00
[SA15851] Blue Coat Products TCP Timestamp Denial of Service
2005-06-29 00:00:00
f5
f5
K4743 : Inadequate validation for TCP segments CVE-2005-0356
2013-03-28 00:00:00
SOL4743 - Inadequate validation for TCP segments CVE-2005-0356
2007-05-16 00:00:00
ubuntucve
ubuntucve
CVE-2005-0356
2005-05-31 00:00:00
openvas
openvas
FreeBSD Security Advisory (FreeBSD-SA-05:15.tcp.asc)
2008-09-04 00:00:00
FreeBSD Security Advisory (FreeBSD-SA-05:15.tcp.asc)
2008-09-04 00:00:00
cve
cve
CVE-2005-0356
2005-05-31 04:00:00
CVE-2005-2068
2022-10-03 16:22:47
nessus
nessus
F5 Networks BIG-IP : Inadequate validation for TCP segments (SOL4743)
2014-10-10 00:00:00
checkpoint_advisories
checkpoint_advisories
Multiple Vendor TCP Timestamp Option Denial of Service attack - Ver2 (CVE-2005-0356)
2015-05-18 00:00:00
cvelist
cvelist
CVE-2005-0356
2005-05-31 04:00:00
CVE-2005-2068
2022-10-03 16:22:47
cert
cert
TCP does not adequately validate segments before updating timestamp value
2005-05-18 00:00:00
nvd
nvd
CVE-2005-0356
2005-05-31 04:00:00
CVE-2005-2068
2005-07-05 04:00:00
redhatcve
redhatcve
CVE-2005-0356
2015-10-30 09:29:59

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

0.931 High

EPSS

Percentile

99.1%

JSON
Related for 3EC8F43B-E8EF-11D9-B875-0001020EED82
freebsd_advisory1securityvulns2f52ubuntucve1openvas2cve2nessus1checkpoint_advisories1cvelist2cert1nvd2redhatcve1