Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
seebugRootSSV:12271
HistorySep 11, 2009 - 12:00 a.m.

Windows 2000 TCP/IP窗口大小拒绝服务漏洞(MS09-048)

2009-09-1100:00:00
Root
www.seebug.org
78

0.051 Low

EPSS

Percentile

92.0%

JSON

CVE ID:CVE-2008-4609

Microsoft Windows是一款流行的操作系统。
Microsoft Windows TCP/IP堆栈处理存在一个错误,可导致连接一直处于FIN-WAIT-1或FIN-WAIT-2状态,攻击者构建一个TCP接收窗口大小设置为零或极小值的恶意报文,"淹没"受此漏洞影响的系统,可导致系统停止对新请求的响应,造成拒绝服务攻击。

Microsoft Windows 2000 Advanced Server
Microsoft Windows 2000 Datacenter Server
Microsoft Windows 2000 Professional
Microsoft Windows 2000 Server
用户可参考如下安全公告获得补丁信息:
http://www.microsoft.com/technet/security/Bulletin/MS09-048.mspx

Related

prion 2
cbl_mariner 2
checkpoint_security 1
f5 1
nessus 4
securityvulns 5
ubuntucve 1
cve 2
debiancve 1
cisco 1
cert 1
checkpoint_advisories 1
openvas 2
oracle 1
avleonov 1
prion
prion
Design/Logic Flaw
2008-10-20 17:59:00
Code injection
2009-09-08 23:30:00
cbl_mariner
cbl_mariner
CVE-2008-4609 affecting package kernel for versions less than 5.10.78.1-1
2022-04-09 06:52:47
CVE-2008-4609 affecting package kernel 5.10.111.1-1
2021-09-09 15:03:26
checkpoint_security
checkpoint_security
Check Point response to Sockstress TCP DoS attacks (CVE-2008-4609)
2009-09-05 21:00:00
f5
f5
SOL10509 - Sockstress DoS tool vulnerability CVE-2008-4609
2009-09-07 00:00:00
nessus
nessus
F5 Networks BIG-IP : Sockstress DoS tool vulnerability (SOL10509)
2014-10-10 00:00:00
TCP State Manipulation Denial of Service Vulnerabilities in Multiple Cisco Products - Cisco Systems
2010-09-01 00:00:00
MS09-048: Vulnerabilities in Windows TCP/IP Could Allow Remote Code Execution (967723)
2009-09-08 00:00:00
securityvulns
securityvulns
[security bulletin] HPSBMI02473 SSRT080138 rev.1 - Cisco Catalyst Blade Switch 3020/3120, Remote Denial of Service (DoS)
2009-11-18 00:00:00
Cisco Security Advisory: TCP State Manipulation Denial of Service Vulnerabilities in Multiple Cisco Products
2009-09-09 00:00:00
Microsoft Security Bulletin MS09-048 - Critical Vulnerabilities in Windows TCP/IP Could Allow Remote Code Execution (967723)
2009-09-09 00:00:00
ubuntucve
ubuntucve
CVE-2008-4609
2008-10-20 00:00:00
cve
cve
CVE-2008-4609
2008-10-20 17:59:00
CVE-2009-0627
2009-09-08 23:30:00
debiancve
debiancve
CVE-2008-4609
2008-10-20 17:59:00
cisco
cisco
TCP State Manipulation Denial of Service Vulnerabilities in Multiple Cisco Products
2009-09-08 00:00:00
cert
cert
TCP may keep its offered receive window closed indefinitely (RFC 1122)
2009-11-23 00:00:00
checkpoint_advisories
checkpoint_advisories
TCP Window Size Enforcement (CVE-2008-4609; CVE-2009-1925; CVE-2009-1926)
2009-09-08 00:00:00
openvas
openvas
Microsoft Windows TCP/IP Remote Code Execution Vulnerability (967723)
2009-09-10 00:00:00
Microsoft Windows TCP/IP Remote Code Execution Vulnerability (967723)
2009-09-10 00:00:00
oracle
oracle
Oracle Critical Patch Update - July 2012
2012-07-17 00:00:00
avleonov
avleonov
Scanvus now supports Vulners and Vulns.io VM Linux vulnerability detection APIs
2022-12-30 18:03:13

0.051 Low

EPSS

Percentile

92.0%

JSON
Related for SSV:12271
prion2cbl_mariner2checkpoint_security1f51nessus4securityvulns5ubuntucve1cve2debiancve1cisco1cert1checkpoint_advisories1openvas2oracle1avleonov1