2 matches found
CVE-2002-0514
PF in OpenBSD 3.0 with the return-rst rule sets the TTL to 128 in the RST packet, which allows remote attackers to determine if a port is being filtered because the TTL is different than the default TTL...
CVE-2002-0514
OpenBSD 3.0 PF with the return-rst rule is vulnerable. The RST packet’s TTL is set to 128, allowing remote attackers to infer whether a port is filtered by comparing TTL to the default. Affected component: PF rule handling in OpenBSD 3.0. Root cause: TTL manipulation in RST responses leads to dis...