Описание
The TCP implementation in Cisco IOS does not properly implement the transitions from the ESTABLISHED state to the CLOSED state, which allows remote attackers to cause a denial of service (flood of ACK packets) via a crafted series of ACK and FIN packets, aka Bug ID CSCtz14399.
Ссылки
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:o:cisco:ios:-:*:*:*:*:*:*:*
EPSS
Процентиль: 73%
0.00746
Низкий
7.1 High
CVSS2
Дефекты
CWE-119
Связанные уязвимости
github
больше 3 лет назад
The TCP implementation in Cisco IOS does not properly implement the transitions from the ESTABLISHED state to the CLOSED state, which allows remote attackers to cause a denial of service (flood of ACK packets) via a crafted series of ACK and FIN packets, aka Bug ID CSCtz14399.
EPSS
Процентиль: 73%
0.00746
Низкий
7.1 High
CVSS2
Дефекты
CWE-119