Cisco PIX Crafted TCP SYN Packet Saturation DoS

2005-11-22T07:03:07
ID OSVDB:21053
Type osvdb
Reporter OSVDB
Modified 2005-11-22T07:03:07

Description

Vulnerability Description

Cisco PIX contains a flaw that may allow a remote denial of service. The issue is triggered when an attacker floods the device with spoofed TCP SYN packets containing invalid checksums causing the device to temporarily block new connections for the addresses and ports being spoofed.

Short Description

Cisco PIX contains a flaw that may allow a remote denial of service. The issue is triggered when an attacker floods the device with spoofed TCP SYN packets containing invalid checksums causing the device to temporarily block new connections for the addresses and ports being spoofed.

References:

Security Tracker: 1015256 Secunia Advisory ID:17670 Related OSVDB ID: 24140 Mail List Post: http://archives.neohapsis.com/archives/fulldisclosure/2005-11/0686.html Mail List Post: http://archives.neohapsis.com/archives/fulldisclosure/2005-11/0675.html Keyword: CSCsc14915,CSCsc16014 CVE-2005-3774