Lucene search

[email protected]CVE-2008-1058

HistoryFeb 28, 2008 - 7:44 p.m.

CVE-2008-1058

2008-02-2819:44:00

[email protected]

web.nvd.nist.gov

openbsd

tcp_respond

denial of service

vulnerability

cve-2008-1058

nvd

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

6.5 Medium

AI Score

Confidence

High

0.005 Low

EPSS

Percentile

76.0%

JSON

The tcp_respond function in netinet/tcp_subr.c in OpenBSD 4.1 and 4.2 allows attackers to cause a denial of service (panic) via crafted TCP packets. NOTE: some of these details are obtained from third party information.

Affected configurations

NVD

Node

openbsdopenbsdMatch4.1

openbsdopenbsdMatch4.2

CPENameOperatorVersion
openbsd:openbsdopenbsdeq4.1
openbsd:openbsdopenbsdeq4.2

CPE	Name	Operator	Version
openbsd:openbsd	openbsd	eq	4.1
openbsd:openbsd	openbsd	eq	4.2

References

secunia.com/advisories/29078

www.openbsd.org/errata41.html#013_tcprespond

www.openbsd.org/errata42.html#007_tcprespond

www.securityfocus.com/bid/27949

www.securitytracker.com/id?1019495

www.vupen.com/english/advisories/2008/0660

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

6.5 Medium

AI Score

Confidence

High

0.005 Low

EPSS

Percentile

76.0%

JSON

Related for CVE-2008-1058

prion1 cvelist1 nvd1