TCP Implementation Flaw in BSD Operating Systems
CVE-2002-0381

Currently unrated

Key Information:

Vendor: Netbsd
Status: Netbsd; FreeBSD; OpenBSD
Vendor: CVE Published:; 25 June 2002

What is CVE-2002-0381?

The TCP implementation in various BSD operating systems contains a vulnerability that fails to appropriately restrict connections directed at broadcast addresses. This oversight allows remote attackers to exploit the system by sending specially crafted packets with a unicast link layer address while using an IP broadcast address, circumventing the intended traffic filters. Such vulnerabilities pose a risk to network security, potentially enabling unauthorized access or interception of data in affected environments.

References

ftp://patches.sgi.com/support/free/security/advisories/20...

vendor-advisoryx_refsource_SGI

http://online.securityfocus.com/archive/1/262733

mailing-listx_refsource_BUGTRAQ

http://www.securityfocus.com/bid/4309

vdb-entryx_refsource_BID

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 25, 2002
Vulnerability Reserved
May 17, 2002

CVE-2002-0381 Data

JSON

Netbsd

What is CVE-2002-0381?

References

Timeline