BSA-2016-1052

🗓️ 11 Apr 2016 00:00:00Reported by Broadcom Security ResponseType

broadcom

broadcom🔗 support.broadcom.com👁 4 Views

TCP sequence number flaw lets attackers guess numbers with large windows to inject RSTs.

Reporter	Title	Published	Views	Family All 92
FreeBSD	FreeBSD -- Denial of Service in TCP packet processing	16 Sep 201400:00	–	freebsd
FreeBSD	TCP denial-of-service attacks against long lived connections	1 Jun 199500:00	–	freebsd
Information Security Automation	Scanvus now supports Vulners and Vulns.io VM Linux vulnerability detection APIs	30 Dec 202218:03	–	avleonov
Cisco	TCP Vulnerabilities in Multiple IOS-Based Cisco Products	20 Apr 200421:00	–	cisco
Cisco	TCP Vulnerabilities in Multiple Non-IOS Cisco Products	20 Apr 200421:00	–	cisco
Tenable Nessus	TCP Vulnerabilities in Multiple IOS-Based Cisco Products	10 Jan 201200:00	–	nessus
Tenable Nessus	Fortinet Fortigate CVE-2004-0230 Blind Reset Attack Using the RST/SYN Bit (FG-IR-16-039)	27 Oct 202400:00	–	nessus
Tenable Nessus	FreeBSD : FreeBSD -- Denial of Service in TCP packet processing (729c4a9f-6007-11e6-a6c3-14dae9d210b8)	12 Aug 201600:00	–	nessus
Tenable Nessus	Juniper Junos TCP Packet Processing Remote DoS (JSA10638)	15 Jul 201400:00	–	nessus
Tenable Nessus	Juniper NSM Servers < 2012.1 Multiple Vulnerabilities	13 Sep 201300:00	–	nessus

09 Jan 2018 19:00Current

6.7Medium risk

Vulners AI Score6.7

CVSS 25

EPSS0.09318

tcp sequence numbers large window size rst injection persistent connections border gateway protocol