Lucene search

FreeBSDE289F7FD-88AC-11D8-90D1-0020ED76EF5A

HistoryFeb 18, 2004 - 12:00 a.m.

many out-of-sequence TCP packets denial-of-service

2004-02-1800:00:00

vuxml.freebsd.org

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.037 Low

EPSS

Percentile

91.7%

JSON

FreeBSD does not limit the number of TCP segments that
may be held in a reassembly queue. A remote attacker may
conduct a low-bandwidth denial-of-service attack against
a machine providing services based on TCP (there are many
such services, including HTTP, SMTP, and FTP). By sending
many out-of-sequence TCP segments, the attacker can cause
the target machine to consume all available memory buffers
(``mbufs’'), likely leading to a system crash.

OSVersionArchitecturePackageVersionFilename
FreeBSDanynoarchfreebsd= 5.2UNKNOWN
FreeBSDanynoarchfreebsd< 5.2.1_2UNKNOWN

OS	Version	Architecture	Package	Version	Filename
FreeBSD	any	noarch	freebsd	= 5.2	UNKNOWN
FreeBSD	any	noarch	freebsd	< 5.2.1_2	UNKNOWN

References

www.idefense.com/application/poi/display?id=78&type=vulnerabilities

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.037 Low

EPSS

Percentile

91.7%

JSON

Related for E289F7FD-88AC-11D8-90D1-0020ED76EF5A