327 matches found
Multiple TCP/IP implementations may use statistically predictable initial sequence numbers
Overview Attacks against TCP initial sequence number generation have been discussed for some time now. It has long been recognized that the ability to know or predict ISNs can lead to TCP connection hijacking or spoofing. What was not previously illustrated was just how predictable one...
Cisco Security Advisory: Cisco IOS Software TCP Initial Sequence NumberRandomization Improvements
-----BEGIN PGP SIGNED MESSAGE----- Cisco Security Advisory: Cisco IOS Software TCP Initial Sequence Number Randomization Improvements Revision 1.0: INTERIM For Public Release 2001 February 28 18:00 US/Pacific UTC+0800 ------------------------------------------------------------------------ Summar...
Дырка в маршрутизаторах Cisco (Initial TCP sequence number)
Неслучайная генерация начального номер последовательности в TCP позволяет перехватывать TCP-Сеансы...
CVE-2000-0916
CVE-2000-0916 is a historical TCP-ISN prediction vulnerability affecting FreeBSD 4.1.1 and earlier (and possibly other BSD-based OSes). The root cause is an insufficient random initial sequence number (ISN) generator, enabling remote attackers to spoof TCP connections. Several connected sources c...
Linux Kernel 2.2 - Predictable TCP Initial Sequence Number
Linux Kernel 2.2 - Predictable TCP Initial Sequence Number source: https://www.securityfocus.com/bid/670/info A vulnerability in the Linux kernel allows remote users to guess the initial sequence number of TCP sessions. This can be used to create spoofed TCP sessions bypassing some types of IP...
Linux Kernel 2.2 - Predictable TCP Initial Sequence Number
source: https://www.securityfocus.com/bid/670/info A vulnerability in the Linux kernel allows remote users to guess the initial sequence number of TCP sessions. This can be used to create spoofed TCP sessions bypassing some types of IP based access controls. The function 'securetcpsequencenumber'...
CVE-1999-1291
TCP/IP implementation in Microsoft Windows 95, Windows NT 4.0, and possibly others, allows remote attackers to reset connections by forcing a reset RST via a PSH ACK or other means, obtaining the target's last sequence number from the resulting packet, then spoofing a reset to the target...