Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
securityvulnsSecurityvulnsSECURITYVULNS:DOC:17050
HistoryMay 19, 2007 - 12:00 a.m.

Predictable TCP ISN in Packeteer PacketShaper

2007-05-1900:00:00
vulners.com
9
JSON

Predictable TCP ISN in Packeteer PacketShaper

Critical: Less critical
Impact: Connection spoofing, DoS
Where: Local network

Product: Packeteer PacketShaper
http://www.packetshaper.com/

Description: The TCP/IP stack of Packeteer PacketShaper is generating predictable initial sequence numbers (ISN): The sequence number is incremented by 128000 per second and by 64000 per connection. (As an example, if the current SYN/ACK ISN is 319104000 then about six seconds later the ISN is likely to be 319936000.) This allows an attacker to spoof connections from trusted clients or launch a DoS attack.

This type of vulnerability has been described over ten years ago in:

The vulnerability has been identified in versions 7.3.0g2 and 7.5.0g1. However, other versions may be also affected.

Solution:
Restrict network access to the device management interfaces

Found by:
nnposter

JSON