Executive Summary
Informations | |||
---|---|---|---|
Name | CVE-2005-4316 | First vendor Publication | 2005-12-17 |
Vendor | Cve | Last vendor Modification | 2018-10-19 |
Security-Database Scoring CVSS v3
Cvss vector : N/A | |||
---|---|---|---|
Overall CVSS Score | NA | ||
Base Score | NA | Environmental Score | NA |
impact SubScore | NA | Temporal Score | NA |
Exploitabality Sub Score | NA | ||
Calculate full CVSS 3.0 Vectors scores |
Security-Database Scoring CVSS v2
Cvss vector : (AV:N/AC:L/Au:N/C:N/I:N/A:C) | |||
---|---|---|---|
Cvss Base Score | 7.8 | Attack Range | Network |
Cvss Impact Score | 6.9 | Attack Complexity | Low |
Cvss Expoit Score | 10 | Authentication | None Required |
Calculate full CVSS 2.0 Vectors scores |
Detail
HP-UX B.11.00, B.11.04, B.11.11, and B.11.23 allows remote attackers to cause a denial of service via a "Rose Attack" that involves sending a subset of small IP fragments that do not form a complete, larger packet. |
Original Source
Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-4316 |
OVAL Definitions
Definition Id: oval:org.mitre.oval:def:5760 | |||
Oval ID: | oval:org.mitre.oval:def:5760 | ||
Title: | HP-UX running TCP/IP Remote Denial of Service (DoS) | ||
Description: | HP-UX B.11.00, B.11.04, B.11.11, and B.11.23 allows remote attackers to cause a denial of service via a "Rose Attack" that involves sending a subset of small IP fragments that do not form a complete, larger packet. | ||
Family: | unix | Class: | vulnerability |
Reference(s): | CVE-2005-4316 | Version: | 4 |
Platform(s): | HP-UX 11 | Product(s): | |
Definition Synopsis: | |||
|
CPE : Common Platform Enumeration
Type | Description | Count |
---|---|---|
Os | 4 |
Open Source Vulnerability Database (OSVDB)
Id | Description |
---|---|
8431 | Multiple Vendor Fragmented TCP/IP Packet DoS (Rose) The implementation of the TCP/IP stack of multiple vendors contains a flaw that may allow a remote denial of service. The issue is triggered when sending a specially crafted sequence of fragmented ICMP packets which will cause the system to consume all available CPU resources during the defragmentation process (a.k.a. the 'rose attack'), which will result in loss of availability for the platform. |
Nessus® Vulnerability Scanner
Date | Description |
---|---|
2006-10-20 | Name : The remote HP-UX host is missing a security-related patch. File : hpux_PHNE_30161.nasl - Type : ACT_GATHER_INFO |
2006-08-08 | Name : The remote HP-UX host is missing a security-related patch. File : hpux_PHNE_34131.nasl - Type : ACT_GATHER_INFO |
2005-08-23 | Name : The remote HP-UX host is missing a security-related patch. File : hpux_PHNE_33427.nasl - Type : ACT_GATHER_INFO |
2005-03-18 | Name : The remote HP-UX host is missing a security-related patch. File : hpux_PHKL_31500.nasl - Type : ACT_GATHER_INFO |
Sources (Detail)
Alert History
Date | Informations |
---|---|
2021-05-04 12:03:27 |
|
2021-04-22 01:03:44 |
|
2020-05-23 00:17:08 |
|
2019-03-18 12:01:09 |
|
2018-10-19 21:19:42 |
|
2017-10-11 09:23:36 |
|
2016-04-26 14:04:10 |
|
2014-02-17 10:33:55 |
|
2013-05-11 11:37:42 |
|