Various TCP Stack Implementations Let Remote Users Deny Service
|
|
SecurityTracker Alert ID: 1021066
|
|
SecurityTracker URL: http://securitytracker.com/id?1021066
|
|
CVE Reference: CVE-2008-4609
(Links to External Site)
|
Updated: Nov 20 2008
|
Original Entry Date: Oct 17 2008
|
Impact: Denial of service via network
|
Description: Several vulnerabilities were reported in various TCP stack implementations. A remote user can cause denial of service conditions. Multiple vendors and products are affected.
A remote user can send specially crafted data to cause denial of service conditions on the target TCP connection queue.
Published
reports indicate that a TCP connection must be established with the target system to exploit these vulnerabilities and that the
vulnerabilities are based on weaknesses in the TCP protocol.
Robert E. Lee and Jack Louis of Outpost24 reported these vulnerabilities.
The
vulnerabilities were publicly referenced in August 2008 in a blog posting:
http://blog.robertlee.name/2008/08/updates.html
CERT-FI
is coordinating with affected vendors.
The CERT-FI advisory is available at:
https://www.cert.fi/haavoittuvuudet/2008/tcp-vulnerabilities.html
Cisco is investigating the impact of these vulnerabilities on Cisco products. The Cisco advisory is available at:
http://www.cisco.com/warp/public/707/cisco-sr-2
0081017-tcp.shtml
[Editor's note: This Alert is a placeholder to document the overall vendor community investigation of these
vulnerabilities. As vendors and researchers confirm which specific products are affected, separate Alerts will be issued for each
affected product.]
|
Impact: A remote user can cause denial of service conditions.
|
Solution: No solution was available at the time of this entry.
|
Cause: State error
|
|
Message History:
None.
|
Source Message Contents
|
Date: Fri, 17 Oct 2008 14:33:19 -0400
Subject: TCP/IP
|
https://www.cert.fi/haavoittuvuudet/2008/tcp-vulnerabilities.html
|
|
