AI Score
Confidence
High
EPSS
Percentile
92.5%
The TCP stack (tcp_input.c) in OpenBSD 3.5 and 3.6 allows remote attackers to cause a denial of service (system panic) via crafted values in the TCP timestamp option, which causes invalid arguments to be used when calculating the retransmit timeout.
secunia.com/advisories/13819
securitytracker.com/id?1012861
www.openbsd.org/errata35.html
www.securityfocus.com/bid/12250