Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2001-0328
HistoryJun 27, 2001 - 4:00 a.m.

CVE-2001-0328

2001-06-2704:00:00
[email protected]
web.nvd.nist.gov
5

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

AI Score

6.5

Confidence

Low

EPSS

0.025

Percentile

90.2%

JSON

TCP implementations that use random increments for initial sequence numbers (ISN) can allow remote attackers to perform session hijacking or disruption by injecting a flood of packets with a range of ISN values, one of which may match the expected ISN.

Related

openvas 3
cvelist 1
cve 1
nessus 4
f5 1
securityvulns 3
cisco 1
cert 1
openvas
openvas
HP-UX Update for ARPA Transport HPSBUX00205
2009-05-05 00:00:00
HP-UX Update for ARPA Transport HPSBUX00205
2009-05-05 00:00:00
TCP/IP Predictable TCP Initial Sequence Number Vulnerability
2013-04-22 00:00:00
cvelist
cvelist
CVE-2001-0328
2001-05-24 04:00:00
cve
cve
CVE-2001-0328
2001-06-27 04:00:00
nessus
nessus
HP-UX PHNE_26101 : HP-UX Running ARPA Transport, Advisory, RFC 1948 ISN Randomization (HPSBUX00205 SSRT080009 rev.3)
2005-02-16 00:00:00
HP-UX PHNE_26771 : HP-UX Running ARPA Transport, Advisory, RFC 1948 ISN Randomization (HPSBUX00205 SSRT080009 rev.3)
2005-02-16 00:00:00
Cisco IOS TCP Sequence Prediction Connection Hijacking (CSCds04747)
2002-06-05 00:00:00
f5
f5
K19063943 : TCP initial sequence number vulnerability CVE-2001-0328
2019-11-08 00:00:00
securityvulns
securityvulns
[security bulletin] SSRT-547 HP Tru64 UNIX Potential Security Vulnerabilities TPC/IP, FTPD, ARP
2002-09-11 00:00:00
HPSBTU01210 SSRT4743, SSRT4884 rev.0 - HP Tru64 UNIX TCP/IP remote Denial of Service (DoS)
2005-07-19 00:00:00
Advisory CA-2001-09
2001-05-03 00:00:00
cisco
cisco
Cisco IOS Software TCP Initial Sequence Number Randomization Improvements
2001-03-01 02:00:00
cert
cert
Multiple TCP/IP implementations may use statistically predictable initial sequence numbers
2001-03-13 00:00:00

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

AI Score

6.5

Confidence

Low

EPSS

0.025

Percentile

90.2%

JSON
Related for NVD:CVE-2001-0328
openvas3cvelist1cve1nessus4f51securityvulns3cisco1cert1