7.5 - MS05-019

Executive Summary

Informations
Name	MS05-019	First vendor Publication	N/A
Vendor	Microsoft	Last vendor Modification	N/A
Severity (Vendor)	N/A	Revision	N/A

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score	NA
Base Score	NA	Environmental Score	NA
impact SubScore	NA	Temporal Score	NA
Exploitabality Sub Score	NA

Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:L/Au:N/C:P/I:P/A:P)
Cvss Base Score	7.5	Attack Range	Network
Cvss Impact Score	6.4	Attack Complexity	Low
Cvss Expoit Score	10	Authentication	None Required
Calculate full CVSS 2.0 Vectors scores

Detail

Vulnerabilities in TCP/IP Could Allow Remote Code Execution and Denial of Service (893066)

CWE : Common Weakness Enumeration

%	Id	Name

OVAL Definitions

Definition Id: oval:org.mitre.oval:def:1177

Oval ID:	oval:org.mitre.oval:def:1177
Title:	HP-UX 11.11 Blind Connection Reset Attack Vulnerability
Description:	Multiple TCP/IP and ICMP implementations allow remote attackers to cause a denial of service (reset TCP connections) via spoofed ICMP error messages, aka the "blind connection-reset attack." NOTE: CVE-2004-0790, CVE-2004-0791, and CVE-2004-1060 have been SPLIT based on different attacks; CVE-2005-0065, CVE-2005-0066, CVE-2005-0067, and CVE-2005-0068 are related identifiers that are SPLIT based on the underlying vulnerability. While CVE normally SPLITs based on vulnerability, the attack-based identifiers exist due to the variety and number of affected implementations and solutions that address the attacks instead of the underlying vulnerabilities.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2004-0790	Version:	8
Platform(s):	HP-UX 11	Product(s):
Definition Synopsis:
700 Series or 800 Series OS Release 11.11 700 Series OS Release 11.11 700-series HP AND HP Release B.11.11 OR 800 Series OS Release 11.11 800-series HP AND HP Release B.11.11 AND NOT Patch PHNE_33159 is installed

Definition Id: oval:org.mitre.oval:def:1288

Oval ID:	oval:org.mitre.oval:def:1288
Title:	Win2k Land Vulnerability
Description:	Windows Server 2003 and XP SP2, with Windows Firewall turned off, allows remote attackers to cause a denial of service (CPU consumption) via a TCP packet with the SYN flag set and the same destination and source address and port, aka a reoccurrence of the "Land" vulnerability (CVE-1999-0016).
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2005-0688	Version:	5
Platform(s):	Microsoft Windows 2000	Product(s):
Definition Synopsis:
Windows 2000 is installed AND Win2K/XP/2003 service pack 4 (or earlier) is installed AND the version of Tcpip.sys is less than 5.0.2195.7035 AND NOT the patch KB893066 is installed

Definition Id: oval:org.mitre.oval:def:1685

Oval ID:	oval:org.mitre.oval:def:1685
Title:	WinXP Land Vulnerability
Description:	Windows Server 2003 and XP SP2, with Windows Firewall turned off, allows remote attackers to cause a denial of service (CPU consumption) via a TCP packet with the SYN flag set and the same destination and source address and port, aka a reoccurrence of the "Land" vulnerability (CVE-1999-0016).
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2005-0688	Version:	7
Platform(s):	Microsoft Windows XP	Product(s):
Definition Synopsis:
Windows XP is installed AND 32-bit version of Windows or 64-bit (itanium architecture) version of Windows is installed 32-Bit version of Windows is installed AND a version of Windows for the ia64 architecture is installed AND Win2K/XP/2003 service pack 2 (or earlier) is installed AND A vulnerable version of tcpip.sys is installed. Service Pack 1 is installed and tcpip.sys is less than 5.1.2600.1693 Win2K/XP/2003/Vista service pack 1 is installed AND the version of Tcpip.sys is less than 5.1.2600.1693 OR Service Pack 2 is installed and tcpip.sys is less than 5.1.2600.2685 Win2K/XP/2003/Vista/2008 Service Pack 2 is installed AND the version of Tcpip.sys is less than 5.1.2600.2685 AND NOT the patch KB893066 is installed

Definition Id: oval:org.mitre.oval:def:1744

Oval ID:	oval:org.mitre.oval:def:1744
Title:	WinXP IP Validation Vulnerability
Description:	Microsoft Windows XP SP2 and earlier, 2000 SP3 and SP4, Server 2003, and older operating systems allows remote attackers to cause a denial of service and possibly execute arbitrary code via crafted IP packets with malformed options, aka the "IP Validation Vulnerability."
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2005-0048	Version:	7
Platform(s):	Microsoft Windows XP	Product(s):
Definition Synopsis:
Windows XP is installed AND 32-bit version of Windows or 64-bit (itanium architecture) version of Windows is installed 32-Bit version of Windows is installed AND a version of Windows for the ia64 architecture is installed AND Win2K/XP/2003 service pack 2 (or earlier) is installed AND A vulnerable version of tcpip.sys is installed. Service Pack 1 is installed and tcpip.sys is less than 5.1.2600.1693 Win2K/XP/2003/Vista service pack 1 is installed AND the version of Tcpip.sys is less than 5.1.2600.1693 OR Service Pack 2 is installed and tcpip.sys is less than 5.1.2600.2685 Win2K/XP/2003/Vista/2008 Service Pack 2 is installed AND the version of Tcpip.sys is less than 5.1.2600.2685 AND NOT the patch KB893066 is installed

Definition Id: oval:org.mitre.oval:def:176

Oval ID:	oval:org.mitre.oval:def:176
Title:	HP-UX 11.00 Blind Connection Reset Attack Vulnerability
Description:	Multiple TCP/IP and ICMP implementations allow remote attackers to cause a denial of service (reset TCP connections) via spoofed ICMP error messages, aka the "blind connection-reset attack." NOTE: CVE-2004-0790, CVE-2004-0791, and CVE-2004-1060 have been SPLIT based on different attacks; CVE-2005-0065, CVE-2005-0066, CVE-2005-0067, and CVE-2005-0068 are related identifiers that are SPLIT based on the underlying vulnerability. While CVE normally SPLITs based on vulnerability, the attack-based identifiers exist due to the variety and number of affected implementations and solutions that address the attacks instead of the underlying vulnerabilities.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2004-0790	Version:	6
Platform(s):	HP-UX 11	Product(s):
Definition Synopsis:
700 Series or 800 Series OS Release 11.00 700 Series OS Release 11.00 700-series HP AND HP Release B.11.00 OR 800 Series OS Release 11.00 800-series HP AND HP Release B.11.00 AND NOT Patch PHNE_33395 is installed

Definition Id: oval:org.mitre.oval:def:181

Oval ID:	oval:org.mitre.oval:def:181
Title:	HP-UX 11.00 Path MTU Discovery Attack Vulnerability
Description:	Multiple TCP/IP and ICMP implementations, when using Path MTU (PMTU) discovery (PMTUD), allow remote attackers to cause a denial of service (network throughput reduction for TCP connections) via forged ICMP ("Fragmentation Needed and Don't Fragment was Set") packets with a low next-hop MTU value, aka the "Path MTU discovery attack." NOTE: CVE-2004-0790, CVE-2004-0791, and CVE-2004-1060 have been SPLIT based on different attacks; CVE-2005-0065, CVE-2005-0066, CVE-2005-0067, and CVE-2005-0068 are related identifiers that are SPLIT based on the underlying vulnerability. While CVE normally SPLITs based on vulnerability, the attack-based identifiers exist due to the variety and number of affected implementations and solutions that address the attacks instead of the underlying vulnerabilities.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2004-1060	Version:	6
Platform(s):	HP-UX 11	Product(s):
Definition Synopsis:
700 Series or 800 Series OS Release 11.00 700 Series OS Release 11.00 700-series HP AND HP Release B.11.00 OR 800 Series OS Release 11.00 800-series HP AND HP Release B.11.00 AND NOT Patch PHNE_33395 is installed

Definition Id: oval:org.mitre.oval:def:1910

Oval ID:	oval:org.mitre.oval:def:1910
Title:	WinXP Blind Connection Reset Attack Vulnerability
Description:	Multiple TCP/IP and ICMP implementations allow remote attackers to cause a denial of service (reset TCP connections) via spoofed ICMP error messages, aka the "blind connection-reset attack." NOTE: CVE-2004-0790, CVE-2004-0791, and CVE-2004-1060 have been SPLIT based on different attacks; CVE-2005-0065, CVE-2005-0066, CVE-2005-0067, and CVE-2005-0068 are related identifiers that are SPLIT based on the underlying vulnerability. While CVE normally SPLITs based on vulnerability, the attack-based identifiers exist due to the variety and number of affected implementations and solutions that address the attacks instead of the underlying vulnerabilities.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2004-0790	Version:	7
Platform(s):	Microsoft Windows XP	Product(s):
Definition Synopsis:
Windows XP is installed AND 32-bit version of Windows or 64-bit (itanium architecture) version of Windows is installed 32-Bit version of Windows is installed AND a version of Windows for the ia64 architecture is installed AND Win2K/XP/2003 service pack 2 (or earlier) is installed AND A vulnerable version of tcpip.sys is installed. Service Pack 1 is installed and tcpip.sys is less than 5.1.2600.1693 Win2K/XP/2003/Vista service pack 1 is installed AND the version of Tcpip.sys is less than 5.1.2600.1693 OR Service Pack 2 is installed and tcpip.sys is less than 5.1.2600.2685 Win2K/XP/2003/Vista/2008 Service Pack 2 is installed AND the version of Tcpip.sys is less than 5.1.2600.2685 AND NOT the patch KB893066 is installed

Definition Id: oval:org.mitre.oval:def:196

Oval ID:	oval:org.mitre.oval:def:196
Title:	HP-UX 11.11 Path MTU Discovery Attack Vulnerability
Description:	Multiple TCP/IP and ICMP implementations, when using Path MTU (PMTU) discovery (PMTUD), allow remote attackers to cause a denial of service (network throughput reduction for TCP connections) via forged ICMP ("Fragmentation Needed and Don't Fragment was Set") packets with a low next-hop MTU value, aka the "Path MTU discovery attack." NOTE: CVE-2004-0790, CVE-2004-0791, and CVE-2004-1060 have been SPLIT based on different attacks; CVE-2005-0065, CVE-2005-0066, CVE-2005-0067, and CVE-2005-0068 are related identifiers that are SPLIT based on the underlying vulnerability. While CVE normally SPLITs based on vulnerability, the attack-based identifiers exist due to the variety and number of affected implementations and solutions that address the attacks instead of the underlying vulnerabilities.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2004-1060	Version:	8
Platform(s):	HP-UX 11	Product(s):
Definition Synopsis:
700 Series or 800 Series OS Release 11.11 700 Series OS Release 11.11 700-series HP AND HP Release B.11.11 OR 800 Series OS Release 11.11 800-series HP AND HP Release B.11.11 AND NOT Patch PHNE_33159 is installed

Definition Id: oval:org.mitre.oval:def:211

Oval ID:	oval:org.mitre.oval:def:211
Title:	HP-UX 11.23 Blind Connection Reset Attack Vulnerability
Description:	Multiple TCP/IP and ICMP implementations allow remote attackers to cause a denial of service (reset TCP connections) via spoofed ICMP error messages, aka the "blind connection-reset attack." NOTE: CVE-2004-0790, CVE-2004-0791, and CVE-2004-1060 have been SPLIT based on different attacks; CVE-2005-0065, CVE-2005-0066, CVE-2005-0067, and CVE-2005-0068 are related identifiers that are SPLIT based on the underlying vulnerability. While CVE normally SPLITs based on vulnerability, the attack-based identifiers exist due to the variety and number of affected implementations and solutions that address the attacks instead of the underlying vulnerabilities.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2004-0790	Version:	8
Platform(s):	HP-UX 11	Product(s):
Definition Synopsis:
700 Series or 800 Series OS Release 11.23 700 Series OS Release 11.23 700-series HP AND HP Release B.11.23 OR 800 Series OS Release 11.23 800-series HP AND HP Release B.11.23 AND NOT Patch PHNE_32606 is installed

Definition Id: oval:org.mitre.oval:def:2188

Oval ID:	oval:org.mitre.oval:def:2188
Title:	Win2k Path MTU Discovery Attack Vulnerability
Description:	Multiple TCP/IP and ICMP implementations, when using Path MTU (PMTU) discovery (PMTUD), allow remote attackers to cause a denial of service (network throughput reduction for TCP connections) via forged ICMP ("Fragmentation Needed and Don't Fragment was Set") packets with a low next-hop MTU value, aka the "Path MTU discovery attack." NOTE: CVE-2004-0790, CVE-2004-0791, and CVE-2004-1060 have been SPLIT based on different attacks; CVE-2005-0065, CVE-2005-0066, CVE-2005-0067, and CVE-2005-0068 are related identifiers that are SPLIT based on the underlying vulnerability. While CVE normally SPLITs based on vulnerability, the attack-based identifiers exist due to the variety and number of affected implementations and solutions that address the attacks instead of the underlying vulnerabilities.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2004-1060	Version:	5
Platform(s):	Microsoft Windows 2000	Product(s):
Definition Synopsis:
Software section Windows 2000 is installed AND Win2K/XP/2003 service pack 4 (or earlier) is installed AND the version of Tcpip.sys is less than 5.0.2195.7035 AND NOT the patch KB893066 is installed AND Configuration section NOT Enable Path MTU Discovery is Disabled

Definition Id: oval:org.mitre.oval:def:2689

Oval ID:	oval:org.mitre.oval:def:2689
Title:	Server 2003 Large Window Size TCP RST Denial of Service
Description:	TCP, when using a large Window Size, makes it easier for remote attackers to guess sequence numbers and cause a denial of service (connection loss) to persistent TCP connections by repeatedly injecting a TCP RST packet, especially in protocols that use long-lived connections, such as BGP.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2004-0230	Version:	7
Platform(s):	Microsoft Windows Server 2003	Product(s):
Definition Synopsis:
Windows Server 2003 is installed AND 32-bit version of Windows or 64-bit (itanium architecture) version of Windows is installed 32-Bit version of Windows is installed AND a version of Windows for the ia64 architecture is installed AND NOT Win2K/XP/2003 is patched AND the version of Tcpip.sys is less than 5.2.3790.336 AND NOT the patch KB893066 is installed

Definition Id: oval:org.mitre.oval:def:270

Oval ID:	oval:org.mitre.oval:def:270
Title:	TCP Connection Reset Vulnerability
Description:	TCP, when using a large Window Size, makes it easier for remote attackers to guess sequence numbers and cause a denial of service (connection loss) to persistent TCP connections by repeatedly injecting a TCP RST packet, especially in protocols that use long-lived connections, such as BGP.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2004-0230	Version:	3
Platform(s):	Microsoft Windows XP Microsoft Windows Server 2003	Product(s):
Definition Synopsis:
WinXP,SP1 Microsoft Windows XP SP1 (32-bit) is installed AND The version of Tcpip6.sys is less than 5.1.2600.1886 OR WinXP,SP2 Microsoft Windows XP SP2 or later is installed AND The version of Tcpip6.sys is less than 5.1.2600.2975 OR WinXP,SP1 (64-bit) Microsoft Windows XP SP1 (64-bit) is installed AND The version of Tcpip6.sys is less than 5.2.3790.2771 OR S03-Gold Microsoft Windows Server 2003 (x86) Gold is installed AND The version of Tcpip6.sys is less than 5.2.3790.576 OR S03,SP1 Microsoft Windows Server 2003 SP1 (x86) is installed AND The version of Tcpip6.sys is less than 5.2.3790.2771

Definition Id: oval:org.mitre.oval:def:28134

Oval ID:	oval:org.mitre.oval:def:28134
Title:	Critical Patch Update January 2015
Description:	TCP, when using a large Window Size, makes it easier for remote attackers to guess sequence numbers and cause a denial of service (connection loss) to persistent TCP connections by repeatedly injecting a TCP RST packet, especially in protocols that use long-lived connections, such as BGP.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2004-0230	Version:	3
Platform(s):	Sun Solaris 10	Product(s):
Definition Synopsis:
Patch 150400-10 or later installed Solaris 10 (SPARC) is installed AND NOT Patch 150400-10 or later installed OR Patch 150401-10 or later installed Solaris 10 (x86) is installed AND NOT Patch 150401-10 or later installed

Definition Id: oval:org.mitre.oval:def:3458

Oval ID:	oval:org.mitre.oval:def:3458
Title:	Win2k Blind Connection Reset Attack Vulnerability
Description:	Multiple TCP/IP and ICMP implementations allow remote attackers to cause a denial of service (reset TCP connections) via spoofed ICMP error messages, aka the "blind connection-reset attack." NOTE: CVE-2004-0790, CVE-2004-0791, and CVE-2004-1060 have been SPLIT based on different attacks; CVE-2005-0065, CVE-2005-0066, CVE-2005-0067, and CVE-2005-0068 are related identifiers that are SPLIT based on the underlying vulnerability. While CVE normally SPLITs based on vulnerability, the attack-based identifiers exist due to the variety and number of affected implementations and solutions that address the attacks instead of the underlying vulnerabilities.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2004-0790	Version:	5
Platform(s):	Microsoft Windows 2000	Product(s):
Definition Synopsis:
Windows 2000 is installed AND Win2K/XP/2003 service pack 4 (or earlier) is installed AND the version of Tcpip.sys is less than 5.0.2195.7035 AND NOT the patch KB893066 is installed

Definition Id: oval:org.mitre.oval:def:3508

Oval ID:	oval:org.mitre.oval:def:3508
Title:	WinXP Large Window Size TCP RST Denial of Service
Description:	TCP, when using a large Window Size, makes it easier for remote attackers to guess sequence numbers and cause a denial of service (connection loss) to persistent TCP connections by repeatedly injecting a TCP RST packet, especially in protocols that use long-lived connections, such as BGP.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2004-0230	Version:	7
Platform(s):	Microsoft Windows XP	Product(s):
Definition Synopsis:
Windows XP is installed AND 32-bit version of Windows or 64-bit (itanium architecture) version of Windows is installed 32-Bit version of Windows is installed AND a version of Windows for the ia64 architecture is installed AND Win2K/XP/2003 service pack 2 (or earlier) is installed AND A vulnerable version of tcpip.sys is installed. Service Pack 1 is installed and tcpip.sys is less than 5.1.2600.1693 Win2K/XP/2003/Vista service pack 1 is installed AND the version of Tcpip.sys is less than 5.1.2600.1693 OR Service Pack 2 is installed and tcpip.sys is less than 5.1.2600.2685 Win2K/XP/2003/Vista/2008 Service Pack 2 is installed AND the version of Tcpip.sys is less than 5.1.2600.2685 AND NOT the patch KB893066 is installed

Definition Id: oval:org.mitre.oval:def:3824

Oval ID:	oval:org.mitre.oval:def:3824
Title:	Win2k IP Validation Vulnerability
Description:	Microsoft Windows XP SP2 and earlier, 2000 SP3 and SP4, Server 2003, and older operating systems allows remote attackers to cause a denial of service and possibly execute arbitrary code via crafted IP packets with malformed options, aka the "IP Validation Vulnerability."
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2005-0048	Version:	5
Platform(s):	Microsoft Windows 2000	Product(s):
Definition Synopsis:
Windows 2000 is installed AND Win2K/XP/2003 service pack 4 (or earlier) is installed AND the version of Tcpip.sys is less than 5.0.2195.7035 AND NOT the patch KB893066 is installed

Definition Id: oval:org.mitre.oval:def:3826

Oval ID:	oval:org.mitre.oval:def:3826
Title:	WinXP Path MTU Discovery Attack Vulnerability
Description:	Multiple TCP/IP and ICMP implementations, when using Path MTU (PMTU) discovery (PMTUD), allow remote attackers to cause a denial of service (network throughput reduction for TCP connections) via forged ICMP ("Fragmentation Needed and Don't Fragment was Set") packets with a low next-hop MTU value, aka the "Path MTU discovery attack." NOTE: CVE-2004-0790, CVE-2004-0791, and CVE-2004-1060 have been SPLIT based on different attacks; CVE-2005-0065, CVE-2005-0066, CVE-2005-0067, and CVE-2005-0068 are related identifiers that are SPLIT based on the underlying vulnerability. While CVE normally SPLITs based on vulnerability, the attack-based identifiers exist due to the variety and number of affected implementations and solutions that address the attacks instead of the underlying vulnerabilities.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2004-1060	Version:	7
Platform(s):	Microsoft Windows XP	Product(s):
Definition Synopsis:
Software section Windows XP is installed AND 32-bit version of Windows or 64-bit (itanium architecture) version of Windows is installed 32-Bit version of Windows is installed AND a version of Windows for the ia64 architecture is installed AND Win2K/XP/2003 service pack 2 (or earlier) is installed AND A vulnerable version of tcpip.sys is installed. Service Pack 1 is installed and tcpip.sys is less than 5.1.2600.1693 Win2K/XP/2003/Vista service pack 1 is installed AND the version of Tcpip.sys is less than 5.1.2600.1693 OR Service Pack 2 is installed and tcpip.sys is less than 5.1.2600.2685 Win2K/XP/2003/Vista/2008 Service Pack 2 is installed AND the version of Tcpip.sys is less than 5.1.2600.2685 AND NOT the patch KB893066 is installed AND Configuration section NOT Enable Path MTU Discovery is Disabled

Definition Id: oval:org.mitre.oval:def:405

Oval ID:	oval:org.mitre.oval:def:405
Title:	HP-UX 11.23 Path MTU Discovery Attack Vulnerability
Description:	Multiple TCP/IP and ICMP implementations, when using Path MTU (PMTU) discovery (PMTUD), allow remote attackers to cause a denial of service (network throughput reduction for TCP connections) via forged ICMP ("Fragmentation Needed and Don't Fragment was Set") packets with a low next-hop MTU value, aka the "Path MTU discovery attack." NOTE: CVE-2004-0790, CVE-2004-0791, and CVE-2004-1060 have been SPLIT based on different attacks; CVE-2005-0065, CVE-2005-0066, CVE-2005-0067, and CVE-2005-0068 are related identifiers that are SPLIT based on the underlying vulnerability. While CVE normally SPLITs based on vulnerability, the attack-based identifiers exist due to the variety and number of affected implementations and solutions that address the attacks instead of the underlying vulnerabilities.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2004-1060	Version:	8
Platform(s):	HP-UX 11	Product(s):
Definition Synopsis:
700 Series or 800 Series OS Release 11.23 700 Series OS Release 11.23 700-series HP AND HP Release B.11.23 OR 800 Series OS Release 11.23 800-series HP AND HP Release B.11.23 AND NOT Patch PHNE_32606 is installed

Definition Id: oval:org.mitre.oval:def:412

Oval ID:	oval:org.mitre.oval:def:412
Title:	HP-UX 11.04 Blind Connection Reset Attack Vulnerability
Description:	Multiple TCP/IP and ICMP implementations allow remote attackers to cause a denial of service (reset TCP connections) via spoofed ICMP error messages, aka the "blind connection-reset attack." NOTE: CVE-2004-0790, CVE-2004-0791, and CVE-2004-1060 have been SPLIT based on different attacks; CVE-2005-0065, CVE-2005-0066, CVE-2005-0067, and CVE-2005-0068 are related identifiers that are SPLIT based on the underlying vulnerability. While CVE normally SPLITs based on vulnerability, the attack-based identifiers exist due to the variety and number of affected implementations and solutions that address the attacks instead of the underlying vulnerabilities.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2004-0790	Version:	6
Platform(s):	HP-UX 11	Product(s):
Definition Synopsis:
700 Series or 800 Series OS Release 11.04 700 Series OS Release 11.04 700-series HP AND HP Release B.11.04 OR 800 Series OS Release 11.04 800-series HP AND HP Release B.11.04 AND NOT Patch PHNE_33427 is installed

Definition Id: oval:org.mitre.oval:def:4549

Oval ID:	oval:org.mitre.oval:def:4549
Title:	Server 2003 IP Validation Vulnerability
Description:	Microsoft Windows XP SP2 and earlier, 2000 SP3 and SP4, Server 2003, and older operating systems allows remote attackers to cause a denial of service and possibly execute arbitrary code via crafted IP packets with malformed options, aka the "IP Validation Vulnerability."
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2005-0048	Version:	7
Platform(s):	Microsoft Windows Server 2003	Product(s):
Definition Synopsis:
Windows Server 2003 is installed AND 32-bit version of Windows or 64-bit (itanium architecture) version of Windows is installed 32-Bit version of Windows is installed AND a version of Windows for the ia64 architecture is installed AND the version of Tcpip.sys is less than 5.2.3790.336 AND NOT Win2K/XP/2003 is patched AND NOT the patch KB893066 is installed

Definition Id: oval:org.mitre.oval:def:4791

Oval ID:	oval:org.mitre.oval:def:4791
Title:	Win2k Large Window Size TCP RST Denial of Service
Description:	TCP, when using a large Window Size, makes it easier for remote attackers to guess sequence numbers and cause a denial of service (connection loss) to persistent TCP connections by repeatedly injecting a TCP RST packet, especially in protocols that use long-lived connections, such as BGP.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2004-0230	Version:	5
Platform(s):	Microsoft Windows 2000	Product(s):
Definition Synopsis:
Windows 2000 is installed AND Win2K/XP/2003 service pack 4 (or earlier) is installed AND the version of Tcpip.sys is less than 5.0.2195.7035 AND NOT the patch KB893066 is installed

Definition Id: oval:org.mitre.oval:def:4804

Oval ID:	oval:org.mitre.oval:def:4804
Title:	Server 2003 Blind Connection Reset Attack Vulnerability
Description:	Multiple TCP/IP and ICMP implementations allow remote attackers to cause a denial of service (reset TCP connections) via spoofed ICMP error messages, aka the "blind connection-reset attack." NOTE: CVE-2004-0790, CVE-2004-0791, and CVE-2004-1060 have been SPLIT based on different attacks; CVE-2005-0065, CVE-2005-0066, CVE-2005-0067, and CVE-2005-0068 are related identifiers that are SPLIT based on the underlying vulnerability. While CVE normally SPLITs based on vulnerability, the attack-based identifiers exist due to the variety and number of affected implementations and solutions that address the attacks instead of the underlying vulnerabilities.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2004-0790	Version:	8
Platform(s):	Microsoft Windows Server 2003	Product(s):
Definition Synopsis:
Windows Server 2003 is installed AND 32-bit version of Windows or 64-bit (itanium architecture) version of Windows is installed 32-Bit version of Windows is installed AND a version of Windows for the ia64 architecture is installed AND the version of Tcpip.sys is less than 5.2.3790.336 AND NOT Win2K/XP/2003 is patched AND NOT the patch KB893066 is installed

Definition Id: oval:org.mitre.oval:def:482

Oval ID:	oval:org.mitre.oval:def:482
Title:	Spoofed Connection Request Vulnerability
Description:	Windows Server 2003 and XP SP2, with Windows Firewall turned off, allows remote attackers to cause a denial of service (CPU consumption) via a TCP packet with the SYN flag set and the same destination and source address and port, aka a reoccurrence of the "Land" vulnerability (CVE-1999-0016).
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2005-0688	Version:	3
Platform(s):	Microsoft Windows XP Microsoft Windows Server 2003	Product(s):
Definition Synopsis:
WinXP,SP1 Microsoft Windows XP SP1 (32-bit) is installed AND The version of Tcpip6.sys is less than 5.1.2600.1886 OR WinXP,SP2 Microsoft Windows XP SP2 or later is installed AND The version of Tcpip6.sys is less than 5.1.2600.2975 OR WinXP,SP1 (64-bit) Microsoft Windows XP SP1 (64-bit) is installed AND The version of Tcpip6.sys is less than 5.2.3790.2771 OR S03-Gold Microsoft Windows Server 2003 (x86) Gold is installed AND The version of Tcpip6.sys is less than 5.2.3790.576 OR S03,SP1 Microsoft Windows Server 2003 SP1 (x86) is installed AND The version of Tcpip6.sys is less than 5.2.3790.2771

Definition Id: oval:org.mitre.oval:def:4978

Oval ID:	oval:org.mitre.oval:def:4978
Title:	Server 2003 Object Management Vulnerability
Description:	Windows Server 2003 and XP SP2, with Windows Firewall turned off, allows remote attackers to cause a denial of service (CPU consumption) via a TCP packet with the SYN flag set and the same destination and source address and port, aka a reoccurrence of the "Land" vulnerability (CVE-1999-0016).
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2005-0688	Version:	7
Platform(s):	Microsoft Windows Server 2003	Product(s):
Definition Synopsis:
Software section Windows Server 2003 is installed AND 32-bit version of Windows or 64-bit (itanium architecture) version of Windows is installed 32-Bit version of Windows is installed AND a version of Windows for the ia64 architecture is installed AND NOT Win2K/XP/2003 is patched AND the version of Tcpip.sys is less than 5.2.3790.336 AND NOT the patch KB893066 is installed AND Configuration section The SynAttackProtect parameter is set to 2

Definition Id: oval:org.mitre.oval:def:514

Oval ID:	oval:org.mitre.oval:def:514
Title:	HP-UX 11.11, 11.23 Blind Connection Reset Attack Vulnerability
Description:	Multiple TCP/IP and ICMP implementations allow remote attackers to cause a denial of service (reset TCP connections) via spoofed ICMP error messages, aka the "blind connection-reset attack." NOTE: CVE-2004-0790, CVE-2004-0791, and CVE-2004-1060 have been SPLIT based on different attacks; CVE-2005-0065, CVE-2005-0066, CVE-2005-0067, and CVE-2005-0068 are related identifiers that are SPLIT based on the underlying vulnerability. While CVE normally SPLITs based on vulnerability, the attack-based identifiers exist due to the variety and number of affected implementations and solutions that address the attacks instead of the underlying vulnerabilities.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2004-0790	Version:	8
Platform(s):	HP-UX 11	Product(s):
Definition Synopsis:
An HPUX 11.11 or 11.23 is installed 700 Series or 800 Series OS Release 11.11 700 Series OS Release 11.11 700-series HP AND HP Release B.11.11 OR 800 Series OS Release 11.11 800-series HP AND HP Release B.11.11 OR 700 Series or 800 Series OS Release 11.23 700 Series OS Release 11.23 700-series HP AND HP Release B.11.23 OR 800 Series OS Release 11.23 800-series HP AND HP Release B.11.23 AND TOUR_PRODUCT.T-NET2-KRN with version less than A.03.00 is installed

Definition Id: oval:org.mitre.oval:def:53

Oval ID:	oval:org.mitre.oval:def:53
Title:	Windows XP, Windows Server 2003 Blind Connection Reset Attack Vulnerability
Description:	Multiple TCP/IP and ICMP implementations allow remote attackers to cause a denial of service (reset TCP connections) via spoofed ICMP error messages, aka the "blind connection-reset attack." NOTE: CVE-2004-0790, CVE-2004-0791, and CVE-2004-1060 have been SPLIT based on different attacks; CVE-2005-0065, CVE-2005-0066, CVE-2005-0067, and CVE-2005-0068 are related identifiers that are SPLIT based on the underlying vulnerability. While CVE normally SPLITs based on vulnerability, the attack-based identifiers exist due to the variety and number of affected implementations and solutions that address the attacks instead of the underlying vulnerabilities.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2004-0790	Version:	6
Platform(s):	Microsoft Windows XP Microsoft Windows Server 2003	Product(s):
Definition Synopsis:
WinXP,SP1 Microsoft Windows XP SP1 (32-bit) is installed AND The version of Tcpip6.sys is less than 5.1.2600.1886 OR WinXP,SP2 Microsoft Windows XP SP2 or later is installed AND The version of Tcpip6.sys is less than 5.1.2600.2975 OR WinXP,SP1 (64-bit) Microsoft Windows XP SP1 (64-bit) is installed AND The version of Tcpip6.sys is less than 5.2.3790.2771 OR S03-Gold Microsoft Windows Server 2003 (x86) Gold is installed AND The version of Tcpip6.sys is less than 5.2.3790.576 OR S03,SP1 Microsoft Windows Server 2003 SP1 (x86) is installed AND The version of Tcpip6.sys is less than 5.2.3790.2771

Definition Id: oval:org.mitre.oval:def:5386

Oval ID:	oval:org.mitre.oval:def:5386
Title:	Multiple Vendor ICMP Path MTU Discovery Connection Degradation DoS Vulnerability
Description:	Multiple TCP/IP and ICMP implementations, when using Path MTU (PMTU) discovery (PMTUD), allow remote attackers to cause a denial of service (network throughput reduction for TCP connections) via forged ICMP ("Fragmentation Needed and Don't Fragment was Set") packets with a low next-hop MTU value, aka the "Path MTU discovery attack." NOTE: CVE-2004-0790, CVE-2004-0791, and CVE-2004-1060 have been SPLIT based on different attacks; CVE-2005-0065, CVE-2005-0066, CVE-2005-0067, and CVE-2005-0068 are related identifiers that are SPLIT based on the underlying vulnerability. While CVE normally SPLITs based on vulnerability, the attack-based identifiers exist due to the variety and number of affected implementations and solutions that address the attacks instead of the underlying vulnerabilities.
Family:	ios	Class:	vulnerability
Reference(s):	CVE-2004-1060	Version:	1
Platform(s):	Cisco IOS	Product(s):
Definition Synopsis:
IOS vulnerable versions AND NOT IOS vulnerable versions AND config contains: ip tcp path-mtu-discovery AND config contains: crypto map AND config contains: tunnel protection AND config contains: ip pmtu AND config contains: tunnel path-mtu-discovery

Definition Id: oval:org.mitre.oval:def:5711

Oval ID:	oval:org.mitre.oval:def:5711
Title:	Cisco Systems Spoofed TCP Reset and SYN Denial of Service Vulnerability
Description:	TCP, when using a large Window Size, makes it easier for remote attackers to guess sequence numbers and cause a denial of service (connection loss) to persistent TCP connections by repeatedly injecting a TCP RST packet, especially in protocols that use long-lived connections, such as BGP.
Family:	ios	Class:	vulnerability
Reference(s):	CVE-2004-0230	Version:	1
Platform(s):	Cisco IOS	Product(s):
Definition Synopsis:
IOS vulnerable versions AND NOT IOS vulnerable versions

Definition Id: oval:org.mitre.oval:def:622

Oval ID:	oval:org.mitre.oval:def:622
Title:	Solaris 8, 9, 10 Blind Connection Reset Attack Vulnerability
Description:	Multiple TCP/IP and ICMP implementations allow remote attackers to cause a denial of service (reset TCP connections) via spoofed ICMP error messages, aka the "blind connection-reset attack." NOTE: CVE-2004-0790, CVE-2004-0791, and CVE-2004-1060 have been SPLIT based on different attacks; CVE-2005-0065, CVE-2005-0066, CVE-2005-0067, and CVE-2005-0068 are related identifiers that are SPLIT based on the underlying vulnerability. While CVE normally SPLITs based on vulnerability, the attack-based identifiers exist due to the variety and number of affected implementations and solutions that address the attacks instead of the underlying vulnerabilities.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2004-0790	Version:	6
Platform(s):	Sun Solaris 8 Sun Solaris 9 Sun Solaris 10	Product(s):
Definition Synopsis:
Solaris 8 (SPARC) meets Sun Alert ID 101658 criteria. Solaris 8 Installed AND sparc architecture AND NOT Patch 116965-19 or later installed OR Solaris 8 (x86) meets Sun Alert ID 101658 criteria. Solaris 8 Installed AND ix86 architecture AND NOT Patch 116966-18 or later installed OR Solaris 9 (SPARC) meets Sun Alert ID 101658 criteria. Solaris 9 Installed AND sparc architecture AND NOT Patch 118305-08 or later installed OR Solaris 9 (x86) meets Sun Alert ID 101658 criteria. Solaris 9 Installed AND ix86 architecture AND NOT Patch 117470-07 or later installed OR Solaris 10 (SPARC) meets Sun Alert ID 101658 criteria. Solaris 10 Installed AND sparc architecture AND NOT Patch 118822-27 or later installed OR Solaris 10 (x86) meets Sun Alert ID 101658 criteria. Solaris 10 Installed AND ix86 architecture AND NOT Patch 118844-28 or later installed

Definition Id: oval:org.mitre.oval:def:651

Oval ID:	oval:org.mitre.oval:def:651
Title:	HP-UX 11.11 or 11.23 Path MTU Discovery Attack Vulnerability
Description:	Multiple TCP/IP and ICMP implementations, when using Path MTU (PMTU) discovery (PMTUD), allow remote attackers to cause a denial of service (network throughput reduction for TCP connections) via forged ICMP ("Fragmentation Needed and Don't Fragment was Set") packets with a low next-hop MTU value, aka the "Path MTU discovery attack." NOTE: CVE-2004-0790, CVE-2004-0791, and CVE-2004-1060 have been SPLIT based on different attacks; CVE-2005-0065, CVE-2005-0066, CVE-2005-0067, and CVE-2005-0068 are related identifiers that are SPLIT based on the underlying vulnerability. While CVE normally SPLITs based on vulnerability, the attack-based identifiers exist due to the variety and number of affected implementations and solutions that address the attacks instead of the underlying vulnerabilities.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2004-1060	Version:	8
Platform(s):	HP-UX 11	Product(s):
Definition Synopsis:
An HPUX 11.11 or 11.23 is installed 700 Series or 800 Series OS Release 11.11 700 Series OS Release 11.11 700-series HP AND HP Release B.11.11 OR 800 Series OS Release 11.11 800-series HP AND HP Release B.11.11 OR 700 Series or 800 Series OS Release 11.23 700 Series OS Release 11.23 700-series HP AND HP Release B.11.23 OR 800 Series OS Release 11.23 800-series HP AND HP Release B.11.23 AND TOUR_PRODUCT.T-NET2-KRN with version less than A.03.00 is installed

Definition Id: oval:org.mitre.oval:def:780

Oval ID:	oval:org.mitre.oval:def:780
Title:	Server 2003 Path MTU Discovery Attack Vulnerability
Description:	Multiple TCP/IP and ICMP implementations, when using Path MTU (PMTU) discovery (PMTUD), allow remote attackers to cause a denial of service (network throughput reduction for TCP connections) via forged ICMP ("Fragmentation Needed and Don't Fragment was Set") packets with a low next-hop MTU value, aka the "Path MTU discovery attack." NOTE: CVE-2004-0790, CVE-2004-0791, and CVE-2004-1060 have been SPLIT based on different attacks; CVE-2005-0065, CVE-2005-0066, CVE-2005-0067, and CVE-2005-0068 are related identifiers that are SPLIT based on the underlying vulnerability. While CVE normally SPLITs based on vulnerability, the attack-based identifiers exist due to the variety and number of affected implementations and solutions that address the attacks instead of the underlying vulnerabilities.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2004-1060	Version:	8
Platform(s):	Microsoft Windows Server 2003	Product(s):
Definition Synopsis:
Software section Windows Server 2003 is installed AND 32-bit version of Windows or 64-bit (itanium architecture) version of Windows is installed 32-Bit version of Windows is installed AND a version of Windows for the ia64 architecture is installed AND the version of Tcpip.sys is less than 5.2.3790.336 AND NOT Win2K/XP/2003 is patched AND the patch KB893066 is installed AND Configuration section Enable Path MTU Discovery is Disabled

Definition Id: oval:org.mitre.oval:def:899

Oval ID:	oval:org.mitre.oval:def:899
Title:	HP-UX 11.04 Path MTU Discovery Attack Vulnerability
Description:	Multiple TCP/IP and ICMP implementations, when using Path MTU (PMTU) discovery (PMTUD), allow remote attackers to cause a denial of service (network throughput reduction for TCP connections) via forged ICMP ("Fragmentation Needed and Don't Fragment was Set") packets with a low next-hop MTU value, aka the "Path MTU discovery attack." NOTE: CVE-2004-0790, CVE-2004-0791, and CVE-2004-1060 have been SPLIT based on different attacks; CVE-2005-0065, CVE-2005-0066, CVE-2005-0067, and CVE-2005-0068 are related identifiers that are SPLIT based on the underlying vulnerability. While CVE normally SPLITs based on vulnerability, the attack-based identifiers exist due to the variety and number of affected implementations and solutions that address the attacks instead of the underlying vulnerabilities.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2004-1060	Version:	6
Platform(s):	HP-UX 11	Product(s):
Definition Synopsis:
700 Series or 800 Series OS Release 11.04 700 Series OS Release 11.04 700-series HP AND HP Release B.11.04 OR 800 Series OS Release 11.04 800-series HP AND HP Release B.11.04 AND NOT Patch PHNE_33427 is installed

CPE : Common Platform Enumeration

Type	Description	Count
Application	Icmp cpe:2.3:a:icmp:icmp::::::::	1
Application	Mcafee Network Data Loss Prevention cpe:2.3:a:mcafee:network_data_loss_prevention:9.2.2:::::::* cpe:2.3:a:mcafee:network_data_loss_prevention:9.2.1:::::::* cpe:2.3:a:mcafee:network_data_loss_prevention:9.2.0:::::::* cpe:2.3:a:mcafee:network_data_loss_prevention:8.6:::::::* cpe:2.3:a:mcafee:network_data_loss_prevention::::::::	5
Application	Openpgp cpe:2.3:a:openpgp:openpgp:2.6.2:::::::*	1
Application	Tcp cpe:2.3:a:tcp:tcp::::::::	1
Os	Juniper Junos cpe:2.3:o:juniper:junos::::::::	1
Os	Microsoft Windows 2000 cpe:2.3:o:microsoft:windows_2000::sp3::::::* cpe:2.3:o:microsoft:windows_2000::sp1::::::* cpe:2.3:o:microsoft:windows_2000::sp2::::::* cpe:2.3:o:microsoft:windows_2000::sp4::fr:::: cpe:2.3:o:microsoft:windows_2000::sp4::::::* cpe:2.3:o:microsoft:windows_2000::::::::	6
Os	Microsoft Windows 2003 Server cpe:2.3:o:microsoft:windows_2003_server:r2:::::::*	1
Os	Microsoft Windows 98 cpe:2.3:o:microsoft:windows_98::gold::::::*	1
Os	Microsoft Windows 98Se cpe:2.3:o:microsoft:windows_98se::::::::	1
Os	Microsoft Windows Me cpe:2.3:o:microsoft:windows_me::::::::	1
Os	Microsoft Windows Xp cpe:2.3:o:microsoft:windows_xp:::media_center:::::* cpe:2.3:o:microsoft:windows_xp:::embedded:::::* cpe:2.3:o:microsoft:windows_xp::sp1:home::::: cpe:2.3:o:microsoft:windows_xp::sp1:embedded::::: cpe:2.3:o:microsoft:windows_xp::sp2:tablet_pc::::: cpe:2.3:o:microsoft:windows_xp:::64-bit:::::* cpe:2.3:o:microsoft:windows_xp::sp1:64-bit::::: cpe:2.3:o:microsoft:windows_xp::sp1:tablet_pc::::: cpe:2.3:o:microsoft:windows_xp::gold:professional::::: cpe:2.3:o:microsoft:windows_xp::sp1:media_center::::: cpe:2.3:o:microsoft:windows_xp:::home:::::*	11
Os	Netbsd cpe:2.3:o:netbsd:netbsd:2.0:::::::* cpe:2.3:o:netbsd:netbsd:1.6.2:::::::* cpe:2.3:o:netbsd:netbsd:1.6.1:::::::* cpe:2.3:o:netbsd:netbsd:1.6:::::::* cpe:2.3:o:netbsd:netbsd:1.5.3:::::::* cpe:2.3:o:netbsd:netbsd:1.5.2:::::::* cpe:2.3:o:netbsd:netbsd:1.5.1:::::::* cpe:2.3:o:netbsd:netbsd:1.5:::::::*	8
Os	Oracle Solaris cpe:2.3:o:oracle:solaris:11:::::::* cpe:2.3:o:oracle:solaris:10:::::::*	2
Os	Sun Solaris cpe:2.3:o:sun:solaris:10.0::sparc::::: cpe:2.3:o:sun:solaris:9.0::sparc:::::	2
Os	Sun Sunos cpe:2.3:o:sun:sunos:5.8:::::::* cpe:2.3:o:sun:sunos:5.7:::::::*	2
Os	Xinuos Openserver cpe:2.3:o:xinuos:openserver:5.0.7:::::::* cpe:2.3:o:xinuos:openserver:5.0.6:::::::*	2
Os	Xinuos Unixware cpe:2.3:o:xinuos:unixware:7.1.3:::::::* cpe:2.3:o:xinuos:unixware:7.1.1:::::::*	2

ExploitDB Exploits

id	Description
2005-04-12	Multiple Vendor ICMP Message Handling DoS
2005-04-12	Multiple Vendor ICMP Implementation Malformed Path MTU DoS
2005-04-12	Multiple Vendor ICMP Implementation Spoofed Source Quench Packet DoS
2005-06-27	Stream / Raped Denial of Service Attack (win version)
2005-04-20	Multiple OS (Win32/Aix/Cisco) - Crafted ICMP Messages DoS Exploit

OpenVAS Exploits

Date	Description
2012-03-01	Name : TCP Sequence Number Approximation Reset Denial of Service Vulnerability File : nvt/secpod_tcp_sequence_approx_dos_vuln.nasl
2011-11-21	Name : Microsoft Windows Internet Protocol Validation Remote Code Execution Vulnerab... File : nvt/secpod_ms_windows_ip_validation_code_exec_vuln.nasl

Open Source Vulnerability Database (OSVDB)

Id	Description
15619	Multiple Vendor ICMP Implementation Malformed Path MTU DoS Multiple ICMP implementations contains a flaw that may allow a remote denial of service. The issue is triggered due to the handling of ICMP error messages and when the "Path MTU Discovery" (PMTUD) mechanism is used. By sending a specially crafted ICMP error message, a remote attacker could arbitrary reduce the throughput of a TCP connection resulting in a loss of availability.
15463	Microsoft Windows IP Validation Failure Remote Code Execution A remote overflow exists in Windows. The IP stack drivers fail to validate IP network packets resulting in a buffer overflow. With a specially crafted request, an attacker can cause arbitrary code execution resulting in a loss of integrity.
15457	Multiple Vendor ICMP Message Handling DoS Multiple ICMP implementations contains a flaw that may allow a remote denial of service. The issue is triggered due to the handling of ICMP error messages. By sending a specially crafted ICMP error message, a remote attacker could reset TCP connections resulting in a loss of availability.
14578	Microsoft Windows Malformed TCP SYN Loopback Packet Remote DoS (land) Microsoft Windows contains a flaw that may allow a remote denial of service. The issue is triggered when sending a TCP packet with the SYN flag set and the same destination and source address and port, which causes the system to consume all available CPU resources, resulting in a loss of availability.
13619	SCO UnixWare / OpenServer TCP RST Injection DoS
4030	TCP/IP Sequence Prediction Blind Reset Spoofing DoS The TCP stack implementation of numerous vendors contains a flaw that may allow a remote denial of service. The issue is triggered when spoofed TCP Reset packets are received by the targeted TCP stack, and will result in loss of availability for the attacked TCP services.

Information Assurance Vulnerability Management (IAVM)

Date	Description
2012-08-16	IAVM : 2012-A-0136 - Multiple Vulnerabilities in Juniper Network Management Products Severity : Category I - VMSKEY : V0033662

Snort® IPS/IDS

Date	Description
2014-01-10	(icmp4)ICMPpathMTUdenialofserviceattempt RuleID : 451 - Revision : 2 - Type :
2014-01-10	Destination Unreachable Fragmentation Needed and DF bit was set RuleID : 396 - Revision : 12 - Type : PROTOCOL-ICMP
2014-01-10	PATH MTU denial of service attempt RuleID : 3626 - Revision : 9 - Type : PROTOCOL-ICMP
2014-01-10	BGP spoofed connection reset attempt RuleID : 2523-community - Revision : 15 - Type : SERVER-OTHER
2014-01-10	BGP spoofed connection reset attempt RuleID : 2523 - Revision : 15 - Type : SERVER-OTHER
2014-01-10	(decode)samesrc/dstIP RuleID : 151 - Revision : 2 - Type :

Nessus® Vulnerability Scanner

Date	Description
2017-05-08	Name : The remote device is missing a vendor-supplied security patch. File : f5_bigip_SOL23440942.nasl - Type : ACT_GATHER_INFO
2017-02-21	Name : The remote SUSE host is missing one or more security updates. File : suse_SU-2017-0494-1.nasl - Type : ACT_GATHER_INFO
2017-02-10	Name : The remote SUSE host is missing one or more security updates. File : suse_SU-2017-0437-1.nasl - Type : ACT_GATHER_INFO
2017-01-31	Name : The remote SUSE host is missing one or more security updates. File : suse_SU-2017-0333-1.nasl - Type : ACT_GATHER_INFO
2016-08-12	Name : The remote FreeBSD host is missing one or more security-related updates. File : freebsd_pkg_729c4a9f600711e6a6c314dae9d210b8.nasl - Type : ACT_GATHER_INFO
2015-09-18	Name : The remote device is missing a vendor-supplied security patch. File : f5_bigip_SOL4583.nasl - Type : ACT_GATHER_INFO
2015-06-30	Name : The remote device is missing a vendor-supplied security patch. File : f5_bigip_SOL15792.nasl - Type : ACT_GATHER_INFO
2015-01-23	Name : The remote Solaris system is missing a security patch from CPU jan2015. File : solaris_jan2015_SRU11_1_15_4_0.nasl - Type : ACT_GATHER_INFO
2014-07-15	Name : The remote device is missing a vendor-supplied security patch. File : juniper_jsa10638.nasl - Type : ACT_GATHER_INFO
2013-09-13	Name : The remote host is affected by multiple vulnerabilities. File : juniper_nsm_2012_1.nasl - Type : ACT_GATHER_INFO
2012-01-10	Name : The remote device is missing a vendor-supplied security patch. File : cisco-sa-20040420-tcp-ios.nasl - Type : ACT_GATHER_INFO
2010-09-01	Name : The remote device is missing a vendor-supplied security patch File : cisco-sa-20050412-icmp.nasl - Type : ACT_GATHER_INFO
2006-10-10	Name : It is possible to crash the remote host due to a flaw in the TCP/IP IPv6 stack. File : smb_nt_ms06-064.nasl - Type : ACT_GATHER_INFO
2005-08-23	Name : The remote HP-UX host is missing a security-related patch. File : hpux_PHNE_33427.nasl - Type : ACT_GATHER_INFO
2005-08-02	Name : The remote host is missing Sun Security Patch number 118844-20 File : solaris10_x86_118844.nasl - Type : ACT_GATHER_INFO
2005-08-01	Name : The remote HP-UX host is missing a security-related patch. File : hpux_PHNE_33395.nasl - Type : ACT_GATHER_INFO
2005-08-01	Name : The remote HP-UX host is missing a security-related patch. File : hpux_PHNE_32606.nasl - Type : ACT_GATHER_INFO
2005-07-05	Name : The remote HP-UX host is missing a security-related patch. File : hpux_PHNE_33159.nasl - Type : ACT_GATHER_INFO
2005-05-30	Name : The remote HP-UX host is missing a security-related patch. File : hpux_PHNE_26125.nasl - Type : ACT_GATHER_INFO
2005-05-30	Name : The remote HP-UX host is missing a security-related patch. File : hpux_PHNE_26076.nasl - Type : ACT_GATHER_INFO
2005-04-12	Name : Arbitrary code can be executed on the remote host due to a flaw in the TCP/IP... File : smb_nt_ms05-019.nasl - Type : ACT_GATHER_INFO
2005-04-12	Name : Arbitrary code can be executed on the remote host due to a flaw in the TCP/IP... File : smb_kb893066.nasl - Type : ACT_GATHER_INFO
2005-02-16	Name : The remote HP-UX host is missing a security-related patch. File : hpux_PHNE_25644.nasl - Type : ACT_GATHER_INFO
2004-04-25	Name : It was possible to send spoofed RST packets to the remote system. File : tcp_seq_window.nasl - Type : ACT_GATHER_INFO

Alert History

If you want to see full details history, please login or register.

Date	Informations
2021-01-08 21:23:44	Multiple Updates
2021-01-07 21:23:50	Multiple Updates
2021-01-05 21:23:53	Multiple Updates
2020-12-31 21:23:45	Multiple Updates
2020-12-17 21:23:47	Multiple Updates
2020-12-15 21:23:41	Multiple Updates
2020-12-12 21:23:44	Multiple Updates
2020-12-09 21:23:56	Multiple Updates
2020-12-08 21:24:01	Multiple Updates
2020-12-05 21:23:47	Multiple Updates
2014-02-17 11:45:09	Multiple Updates

Global Informations

Type	Count
CWE ID(s)	1
Oval ID(s)	32
CPE ID(s)	48
osvdb(s)	6
ExploitDB Exploit(s)	5
Openvas Exploit(s)	2
IAVM(s)	1
Snort® Rule(s)	6
Nessus® Exploit(s)	24

	Related
7.5	CVE-2005-0048
5	CVE-2005-0688
5	CVE-2004-1060
5	CVE-2004-0790
5	CVE-2004-0230
5	KB899480
Info : listing not affected by your CVSS Env Score

Same Subject	Severity
Login to view 6 more Alert(s)

7.5 - MS05-019

Executive Summary

Security-Database Scoring CVSS v3

Security-Database Scoring CVSS v2

Detail

CWE : Common Weakness Enumeration

OVAL Definitions

CPE : Common Platform Enumeration

ExploitDB Exploits

OpenVAS Exploits

Open Source Vulnerability Database (OSVDB)

Information Assurance Vulnerability Management (IAVM)

Snort® IPS/IDS

Nessus® Vulnerability Scanner

Alert History

Global Informations

Open Standards

Other Databases

COMPANY

STANDARDS

RECENT POSTS

MENU