Lucene search
K

19 matches found

Tenable Nessus
Tenable Nessus
added 2025/11/05 12:0 a.m.2 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989027)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989027 advisory. In the Linux kernel, the following vulnerability has been resolved: tcp: do not accept ACK of bytes we never sent This patch is based on a detailed report and ideas...

5.5CVSS6.2AI score0.00227EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2024/05/29 2:18 p.m.1 views

SUSE CVE-2023-52881

In the Linux kernel, the following vulnerability has been resolved: tcp: do not accept ACK of bytes we never sent This patch is based on a detailed report and ideas from Yepeng Pan and Christian Rossow. ACK seq validation is currently following RFC 5961 5.2 guidelines: The ACK value is considered...

5.9CVSS6.2AI score0.00227EPSS
Exploits0References44
NVD
NVD
added 2024/05/29 11:16 a.m.17 views

CVE-2023-52881

In the Linux kernel, the following vulnerability has been resolved: tcp: do not accept ACK of bytes we never sent This patch is based on a detailed report and ideas from Yepeng Pan and Christian Rossow. ACK seq validation is currently following RFC 5961 5.2 guidelines: The ACK value is considered...

5.5CVSS7.2AI score0.00227EPSS
Exploits0References8
UbuntuCve
UbuntuCve
added 2024/05/29 11:16 a.m.30 views

CVE-2023-52881

In the Linux kernel, the following vulnerability has been resolved: tcp: do not accept ACK of bytes we never sent This patch is based on a detailed report and ideas from Yepeng Pan and Christian Rossow. ACK seq validation is currently following RFC 5961 5.2 guidelines: The ACK value is considered...

5.5CVSS6.3AI score0.00227EPSS
Exploits0References10
Vulnrichment
Vulnrichment
added 2024/05/29 10:15 a.m.34 views

CVE-2023-52881 tcp: do not accept ACK of bytes we never sent

In the Linux kernel, the following vulnerability has been resolved: tcp: do not accept ACK of bytes we never sent This patch is based on a detailed report and ideas from Yepeng Pan and Christian Rossow. ACK seq validation is currently following RFC 5961 5.2 guidelines: The ACK value is considered...

6.6AI score0.00227EPSS
Exploits0References8
Fortinet
Fortinet
added 2020/05/20 12:0 a.m.267 views

Protect

TCP stacks that lack RFC 5961 3.2 & 4.2 support or have it disabled at application level may allow remote attackers to guess sequence numbers and cause a denial of service connection loss to persistent TCP connections by repeatedly injecting a TCP RST or SYN packet...

5CVSS8.7AI score0.80855EPSS
Exploits3Affected Software8
Symantec
Symantec
added 2016/09/14 8:0 a.m.83 views

SA131 : TCP Session Hijacking in Operating Systems Supporting RFC 5961

SUMMARY Blue Coat products that include a vulnerable version of an operating system that supports RFC 5961 are susceptible to a TCP session hijacking vulnerability. A remote, off-path attacker can infer the sequence numbers of an existing TCP connection, and either reset the connection or inject...

5.8CVSS1.4AI score0.15073EPSS
Exploits3Affected Software13
Huawei
Huawei
added 2016/09/07 12:0 a.m.63 views

Security Advisory - TCP Connection Hijack Vulnerability

There is a vulnerability in the implementation of the RFC 5961, due to the improper determination of the rate of challenge ACK responses by the global rate limit feature. Successful exploit could allow an unauthenticated, remote attacker to reset or hijack into a TCP connections between two...

5.8CVSS7AI score0.15073EPSS
Exploits3Affected Software22
OpenVAS
OpenVAS
added 2016/08/24 12:0 a.m.43 views

RedHat Update for kernel RHSA-2016:1664-01

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.8CVSS7.3AI score0.15073EPSS
Exploits3References2
Tenable Nessus
Tenable Nessus
added 2016/08/22 12:0 a.m.64 views

Scientific Linux Security Update : kernel on SL7.x x86_64 (20160818)

It was found that the RFC 5961 challenge ACK rate limiting as implemented in the Linux kernel's networking subsystem allowed an off-path attacker to leak certain information about a given connection by creating congestion on the global challenge ACK rate limit counter and then measuring the chang...

5.8CVSS6.9AI score0.15073EPSS
Exploits3References2
ArchLinux
ArchLinux
added 2016/08/21 12:0 a.m.70 views

linux-lts: information disclosure

A security issue has been found in the Linux kernel's implementation of challenge ACKs as specified in RFC 5961. An attacker which knows a connection's client IP, server IP and server port can abuse the challenge ACK mechanism to determine the accuracy of a normally 'blind' attack on the client o...

5.8CVSS2.6AI score0.15073EPSS
Exploits3References3
Cent OS
Cent OS
added 2016/08/20 2:0 a.m.88 views

kernel, perf, python security update

CentOS Errata and Security Advisory CESA-2016:1633 An update for kernel is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

5.8CVSS6.8AI score0.15073EPSS
Exploits3References7
OpenVAS
OpenVAS
added 2016/08/20 12:0 a.m.42 views

CentOS Update for kernel CESA-2016:1633 centos7

Check the version of kernel SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.882546";...

5.8CVSS6.8AI score0.15073EPSS
Exploits3References2
Tenable Nessus
Tenable Nessus
added 2016/08/19 12:0 a.m.36 views

RHEL 7 : kernel (RHSA-2016:1633)

An update for kernel is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

5.8CVSS6.7AI score0.15073EPSS
Exploits3References3
RedHat Linux
RedHat Linux
added 2016/08/18 8:6 p.m.112 views

Important: Red Hat Security Advisory: kernel security and bug fix update

An update for kernel is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

5.8CVSS6.8AI score0.15073EPSS
Exploits3References2
ArchLinux
ArchLinux
added 2016/08/17 12:0 a.m.63 views

linux-zen: information disclosure

A security issue has been found in the Linux kernel's implementation of challenge ACKs as specified in RFC 5961. An attacker which knows a connection's client IP, server IP and server port can abuse the challenge ACK mechanism to determine the accuracy of a normally 'blind' attack on the client o...

5.8CVSS2.6AI score0.15073EPSS
Exploits3References3
ArchLinux
ArchLinux
added 2016/08/14 12:0 a.m.60 views

linux: information disclosure

A security issue has been found in the Linux kernel's implementation of challenge ACKs as specified in RFC 5961. An attacker which knows a connection's client IP, server IP and server port can abuse the challenge ACK mechanism to determine the accuracy of a normally 'blind' attack on the client o...

5.8CVSS2.5AI score0.15073EPSS
Exploits3References3
myhack58
myhack58
added 2016/08/13 12:0 a.m.12 views

Linux device TCP connection exposure to high-risk vulnerabilities: as long as the access network might be attack-vulnerability warning-the black bar safety net

Generally, we would think, to confirm on the Internet any two whether the host device to establish a TCP connection Newsletter, in fact, is not easy--the attacker if not both sides of the communication path, it is even more so. In addition, if the attacker is not in the communication path to be...

7.4AI score
Exploits0
RedhatCVE
RedhatCVE
added 2016/07/12 8:48 a.m.62 views

CVE-2016-5696

It was found that the RFC 5961 challenge ACK rate limiting as implemented in the Linux kernel's networking subsystem allowed an off-path attacker to leak certain information about a given connection by creating congestion on the global challenge ACK rate limit counter and then measuring the chang...

5.8CVSS1.1AI score0.15073EPSS
Exploits3References2
Rows per page
Query Builder