|
| TC: | 12018 | |
| Description: | It has been demonstrated that Linux 2.0.35 and earlier are subject to a technique called "blind TCP spoofing". This allows an attacker to spoof a TCP connection (e.g. from an authorized source). Furthermore, data (illegally) transmitted to the server is delivered to the listening application. This situation can have serious implications. | |
| TC Impact: | Gather Info |
| Vulnerability Publication: | May 1999 | |
| Advisory Copyright: | NAI | |
| Summary: | The TCP/IP stack in this Linux kernel is known for multiple security holes. The kernel must be updated. | |
| Risk: | Medium | |
| CVSS 2.0 metrics: | Access Vector: Network Access Complexity: Low Authentication: None Confidentiality Impact: None Integrity Impact: Partial Availability Impact: None | |
| CVSS 2.0 Base Score: | 5.0 |
| Vulnerability Impact: |
Attack |
|---|
| Host Impact: | An attacker can impersonate an authorized source and get special privileges. | |
| Nature of Remediation: | Update to latest Linux kernel. |
| Step required to fix the reported vulnerability: | |
***** Solution type: Upgrade Software ***** Upgrade to the latest Linux Kernel version. See references for more details. |
| References: | ||
| * XF: linux-blind-spoof http://xforce.iss.net/xforce/xfdb/1932 * MISC: http://www.pgp.com/research/covert/advisories/032.asp * BID: http://www.securityfocus.com/bid/580 * BUGTRAQ: http://seclists.org/bugtraq/1999/Aug/0073.html * MISC: http://archives.neohapsis.com/archives/bugtraq/1999_1/0981.html |
| CVE Link: |
CVE-1999-0414 |
 |
|---|
| Glossary: |
ICMP Spoofing TCP/IP |
|---|