CVE-2005-0740

2005-03-1305:00:00

mitre

www.cve.org

AI Score

6.6

Confidence

High

EPSS

0.044

Percentile

92.5%

JSON

The TCP stack (tcp_input.c) in OpenBSD 3.5 and 3.6 allows remote attackers to cause a denial of service (system panic) via crafted values in the TCP timestamp option, which causes invalid arguments to be used when calculating the retransmit timeout.

References

secunia.com/advisories/13819

securitytracker.com/id?1012861

www.openbsd.org/errata35.html

www.securityfocus.com/bid/12250