CVE-2005-0356

Currently unrated

Key Information:

Vendor: Cisco
Status: Secure Access Control Server; Mgx 8230; Mgx 8250; Personal Assistant
Vendor: CVE Published:; 31 May 2005

Summary

Multiple TCP implementations with Protection Against Wrapped Sequence Numbers (PAWS) with the timestamps option enabled allow remote attackers to cause a denial of service (connection loss) via a spoofed packet with a large timer value, which causes the host to discard later packets because they appear to be too old.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/20635

vdb-entryx_refsource_XF

http://secunia.com/advisories/15393

third-party-advisoryx_refsource_SECUNIA

http://www.kb.cert.org/vuls/id/637934

third-party-advisoryx_refsource_CERT-VN

EPSS Score

86% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
May 31, 2005
Vulnerability Reserved
Feb 11, 2005