16 matches found
EUVD-2020-20142
Malware in sbrugna...
EUVD-2020-20137
Malware in sbrugna...
EUVD-2024-32906
Malicious code in bioql PyPI...
EUVD-2021-32254
Malicious code in bioql PyPI...
CVE-2024-10604
Vulnerabilities in the algorithms used by Fuchsia to populate network protocol header fields, specifically the TCP ISN, TCP timestamp, TCP and UDP source ports, and IPv4/IPv6 fragment ID allow for these values to be guessed under circumstances...
CVE-2020-27631
In Oryx CycloneTCP 1.9.6, TCP ISNs are improperly random...
CVE-2021-45488
The CVE-2021-45488 issue affects NetBSD up to 9.2, involving an information leak in the TCP ISN (ISS) generation algorithm within the IP/TCP stack. The root cause is an information disclosure flaw in how ISNs are generated, enabling partial exposure of sensitive data. Publicly documented details ...
PT-2021-2223 · Unknown · Ethernut Nut/Os
Name of the Vulnerable Software and Affected Versions: Ethernut Nut/OS version 5.1 Description: An issue was discovered in the code that generates Initial Sequence Numbers ISNs for TCP connections, deriving the ISN from an insufficiently random source. This allows an attacker to determine the ISN...
CVE-2018-7356
All versions up to V3.03.10.B23P2 of ZTE ZXR10 8905E product are impacted by TCP Initial Sequence Number ISN reuse vulnerability, which can generate easily predictable ISN, and allows remote attackers to spoof connections...
habu - Network Hacking Toolkit
Habu is to teach and learn some concepts about Python and Network Hacking. These are basic functions that help with some tasks for Ethical Hacking and Penetration Testing. Most of them are related with networking, and the implementations are intended to be understandable for who wants to read the...
CVE-2015-3963
CVE-2015-3963 describes a TCP initial sequence number (ISN) predictability vulnerability in Wind River VxWorks (various versions, including 5.x–7.x as deployed by Schneider Electric SAGE RTUs). The root cause is generation of predictable TCP ISNs, enabling remote attackers to spoof or disrupt TCP...
CVE-2014-9196
Eaton Cooper Power Systems ProView 4.0 and 5.0 before 5.0 11 on Form 6 controls and Idea and IdeaPLUS relays generates TCP initial sequence number ISN values linearly, which makes it easier for remote attackers to spoof TCP sessions by predicting an ISN value...
CVE-2014-9196 Eaton’s Cooper Power Series Form 6 Control and Idea/IdeaPlus Relays with Ethernet
Eaton Cooper Power Systems ProView 4.0 and 5.0 before 5.0 11 on Form 6 controls and Idea and IdeaPLUS relays generates TCP initial sequence number ISN values linearly, which makes it easier for remote attackers to spoof TCP sessions by predicting an ISN value...
Design/Logic Flaw
The 17046 Ethernet card before 94450214LFMT100SEM-L.R3-CL for the GE Digital Energy Hydran M2 does not properly generate random values for TCP Initial Sequence Numbers ISNs, which makes it easier for remote attackers to spoof packets by predicting these values...
SOL15301 - Linux kernel TCP ISN vulnerability CVE-2011-3188
Recommended action If the previous table lists a version in the Versions known to be not vulnerable column, you can eliminate this vulnerability by upgrading to the listed version. If the table does not list any version in the column, then no upgrade candidate currently exists. FirePass To protec...
Design/Logic Flaw
Packeteer PacketShaper uses fixed increments in TCP initial sequence number ISN values, which allows remote attackers to predict the ISN value, and perform session hijacking or disruption...