Denial of Service Vulnerability in FreeBSD and Mac OS X
CVE-2004-0171

Currently unrated

Key Information:

Vendor: OpenBSD
Status: OpenBSD; FreeBSD
Vendor: CVE Published:; 15 March 2004

What is CVE-2004-0171?

This vulnerability impacts FreeBSD versions 5.1 and earlier, as well as Mac OS X prior to 10.3.4, allowing remote attackers to exploit the operating system’s handling of TCP packets. By sending a large number of out-of-sequence TCP packets, an attacker can exhaust memory buffers, resulting in a denial of service that prevents new connections from being established. This not only disrupts service availability but also risks a complete system crash, affecting operational continuity.

References

http://lists.seifried.org/pipermail/security/2004-May/003...

vendor-advisoryx_refsource_APPLE

ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD...

vendor-advisoryx_refsource_FREEBSD

http://www.idefense.com/application/poi/display?id=78&typ...

third-party-advisoryx_refsource_IDEFENSE

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Mar 15, 2004
Vulnerability Reserved
Feb 19, 2004

OpenBSD

What is CVE-2004-0171?

References

Timeline