Thomson SpeedTouch Predictable TCP ISN Generation

2004-08-06T04:55:51
ID OSVDB:8337
Type osvdb
Reporter iDEFENSE(idlabs-advisories@idefense.com)
Modified 2004-08-06T04:55:51

Description

Vulnerability Description

Thomson ADSL SpeedTouch Router contains a flaw that may allow a malicious user to determine the ISN number of TCP packets. The issue is triggered due to the predictable nature of the ISN Generator. It is possible that the flaw may allow spoofing of TCP traffic coming from the device resulting in a loss of integrity.

Solution Description

Currently, there are no known upgrades, patches, or workarounds available to correct this issue.

Short Description

Thomson ADSL SpeedTouch Router contains a flaw that may allow a malicious user to determine the ISN number of TCP packets. The issue is triggered due to the predictable nature of the ISN Generator. It is possible that the flaw may allow spoofing of TCP traffic coming from the device resulting in a loss of integrity.

References:

Vendor URL: http://www.speedtouchdsl.com/ Secunia Advisory ID:12238 Other Advisory URL: http://www.idefense.com/application/poi/display?id=120&type=vulnerabilities CVE-2004-0641