Lucene search

[email protected]CVE-2001-0162

HistoryJan 01, 2001 - 5:00 a.m.

CVE-2001-0162

2001-01-0105:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2001-0162

wince 3.0.9348

tcp spoofing

tcp hijacking

nvd

6.8 Medium

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.012 Low

EPSS

Percentile

85.3%

JSON

WinCE 3.0.9348 generates predictable TCP Initial Sequence Numbers (ISNs), which allows remote attackers to spoof or hijack TCP connections.

CPENameOperatorVersion
microsoft:windows_embedded_compactmicrosoft windows embedded compacteq3.0.9348

CPE	Name	Operator	Version
microsoft:windows_embedded_compact	microsoft windows embedded compact	eq	3.0.9348

References

www.cs.jhu.edu/~seny/pubs/wince802.pdf

6.8 Medium

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.012 Low

EPSS

Percentile

85.3%

JSON

Related for CVE-2001-0162

nessus1 openvas1