Lucene search

K
cve[email protected]CVE-2001-0288
HistoryMay 03, 2001 - 4:00 a.m.

CVE-2001-0288

2001-05-0304:00:00
NVD-CWE-Other
web.nvd.nist.gov
28
cisco
switches
routers
ios 12.1
tcp initial sequence numbers
isns
remote attack
spoofing
hijacking

6.8 Medium

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.002 Low

EPSS

Percentile

60.9%

Cisco switches and routers running IOS 12.1 and earlier produce predictable TCP Initial Sequence Numbers (ISNs), which allows remote attackers to spoof or hijack TCP connections.

CPENameOperatorVersion
cisco:ioscisco iosle12.1

6.8 Medium

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.002 Low

EPSS

Percentile

60.9%

Related for CVE-2001-0288