Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002185)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002185 advisory. The tcprcvstateprocess function in net/ipv4/tcpinput.c in the Linux kernel before 3.2.24 allows remote attackers to cause a denial of service kernel resource...

EUVD-2013-5309

Malware in sbrugna...

EUVD-2016-2452

Malware in sbrugna...

CVE-2022-22724

A CWE-400: Uncontrolled Resource Consumption vulnerability exists that could cause a denial of service on ports 80 HTTP and 502 Modbus, when sending a large number of TCP RST or FIN packets to any open TCP port of the PLC. Affected Product: Modicon M340 CPUs: BMXP34 All Versions...

CVE-2016-1353

The TCP implementation in Cisco Videoscape Distribution Suite for Internet Streaming VDS-IS 3.30, 3.31, 4.00, and 4.10 does not properly initiate new TCP sessions when a previous session is in a FIN wait state, which allows remote attackers to cause a denial of service TCP outage via vectors...

CVE-2016-1353

The TCP implementation in Cisco Videoscape Distribution Suite for Internet Streaming VDS-IS 3.30, 3.31, 4.00, and 4.10 does not properly initiate new TCP sessions when a previous session is in a FIN wait state, which allows remote attackers to cause a denial of service TCP outage via vectors...

CVE-2016-1353

The CVE covers Cisco VDS-IS (Videoscape Distribution Suite for Internet Streaming) TCP session handling in FIN_WAIT state. Affected versions are 3.3(0), 3.3(1), 4.0(0), and 4.1(0). The root cause is improper TCP session management when a previous session is in FIN_WAIT, which can prevent starting...

CVE-2016-1353

The TCP implementation in Cisco Videoscape Distribution Suite for Internet Streaming VDS-IS 3.30, 3.31, 4.00, and 4.10 does not properly initiate new TCP sessions when a previous session is in a FIN wait state, which allows remote attackers to cause a denial of service TCP outage via vectors...

Code injection

The tcprcvstateprocess function in net/ipv4/tcpinput.c in the Linux kernel before 3.2.24 allows remote attackers to cause a denial of service kernel resource consumption via a flood of SYN+FIN TCP packets, a different vulnerability than CVE-2012-2663...

UBUNTU-CVE-2012-2663

extensions/libxttcp.c in iptables through 1.4.21 does not match TCP SYN+FIN packets in --syn rules, which might allow remote attackers to bypass intended firewall restrictions via crafted packets. NOTE: the CVE-2012-6638 fix makes this issue less relevant...

CVE-2012-6638

CVE-2012-6638 (Linux kernel) affects the tcp_rcv_state_process in net/ipv4/tcp_input.c and can cause a DoS due to a flood of SYN+FIN packets. The vulnerability exists in kernels before 3.2.24 and is fixed in the 3.2.24 update (per ChangeLog-3.2.24). Exploitation is described as remote and results...

Code injection

The TCP implementation in Cisco IOS does not properly implement the transitions from the ESTABLISHED state to the CLOSED state, which allows remote attackers to cause a denial of service flood of ACK packets via a crafted series of ACK and FIN packets, aka Bug ID CSCtz14399...

USN-1651-1: Linux kernel vulnerability

Rodrigo Freire discovered a flaw in the Linux kernel's TCP illinois congestion control algorithm. A local attacker could use this to cause a denial of service. CVE-2012-4565 Mathias Krause discovered an information leak in the Linux kernel's TUN/TAP device driver. A local user could exploit this...

CVE-2007-3537

IBM OS/400 aka i5/OS V4R2M0 through V5R3M0 on iSeries machines sends responses to TCP SYN-FIN packets, which allows remote attackers to obtain system information and possibly bypass firewall rules...

snort protection bypass

Packest with SYN,FIN,ECN bits set are not detected...

Zyxel Prestige DoS

Problems with fragmented packets processing, Syn+fin and Syn+ack packets...