7.1 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:N/I:N/A:C
0.045 Low
EPSS
Percentile
92.5%
The TCP implementation in (1) Linux, (2) platforms based on BSD Unix, (3)
Microsoft Windows, (4) Cisco products, and probably other operating systems
allows remote attackers to cause a denial of service (connection queue
exhaustion) via multiple vectors that manipulate information in the TCP
state table, as demonstrated by sockstress.
Author | Note |
---|---|
kees | negligible priority because there is no actual information yet. |