Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2014-7250HistoryDec 12, 2014 - 3:03 a.m.
CVE-2014-7250
2014-12-1203:03:47
Debian Security Bug Tracker
security-tracker.debian.org
10
5 Medium
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.005 Low
EPSS
Percentile
75.3%
The TCP stack in 4.3BSD Net/2, as used in FreeBSD 5.4, NetBSD possibly 2.0, and OpenBSD possibly 3.6, does not properly implement the session timer, which allows remote attackers to cause a denial of service (resource consumption) via crafted packets.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 10 | all | kfreebsd-10 | <= 10.3~svn300087-5 | kfreebsd-10_10.3~svn300087-5_all.deb |
Related
cvelist
cvelist
CVE-2014-7250
2014-12-12 02:00:00
prion
prion
Session fixation
2014-12-12 03:03:00
nvd
nvd
CVE-2014-7250
2014-12-12 03:03:47
jvn
jvn
JVN#07930208: BSD Operating Systems vulnerable to denial-of-service (DoS)
2014-11-21 00:00:00
cve
cve
CVE-2014-7250
2014-12-12 03:03:47
5 Medium
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.005 Low
EPSS
Percentile
75.3%
Related for DEBIANCVE:CVE-2014-7250