CVE-2005-0356

Severity

50%

Complexity

99%

Confidentiality

48%

Multiple TCP implementations with Protection Against Wrapped Sequence Numbers (PAWS) with the timestamps option enabled allow remote attackers to cause a denial of service (connection loss) via a spoofed packet with a large timer value, which causes the host to discard later packets because they appear to be too old.

Multiple TCP implementations with Protection Against Wrapped Sequence Numbers (PAWS) with the timestamps option enabled allow remote attackers to cause a denial of service (connection loss) via a spoofed packet with a large timer value, which causes the host to discard later packets because they appear to be too old.

CVSS 2.0 Base Score 5. CVSS Attack Vector: network. CVSS Attack Complexity: low. CVSS Vector: (AV:N/AC:L/Au:N/C:N/I:N/A:P).

Overview

First reported 19 years ago

2005-05-31 04:00:00

Last updated 5 years ago

2019-04-30 14:27:00

Affected Software

Cisco Agent Desktop

Cisco E-Mail Manager

Cisco Emergency Responder 1.1

1.1

Cisco Intelligent Contact Manager 5.0

5.0

Cisco IP Contact Center Enterprise

Cisco IP Contact Center Express

Cisco MeetingPlace

Cisco Personal Assistant 1.3 (1)

1.3\(1\)

Cisco Personal Assistant 1.3 (2)

1.3\(2\)

Cisco Personal Assistant 1.3 (3)

1.3\(3\)

Cisco Personal Assistant 1.3 (4)

1.3\(4\)

Cisco Personal Assistant 1.4(1)

1.4\(1\)

Cisco Personal Assistant 1.4(2)

1.4\(2\)

Cisco Remote Monitoring Suite Option

Cisco Secure Access Control Server (ACS) 3.0 for Windows

3.0

Cisco Secure Access Control Server (ACS) 3.1 for Windows

3.1

Cisco Secure Access Control Server 3.2

3.2

Cisco Secure Access Control Server (ACS) 3.2 (1) for Windows

3.2\(1\)

Cisco Secure Access Control Server (ACS) 3.2 (1.20) for Windows

3.2\(1.20\)

Cisco Secure Access Control Server (ACS) 3.2 (2) for Windows

3.2\(2\)

Cisco Secure Access Control Server (ACS) 3.2 (3) for Windows

3.2\(3\)

Cisco Secure Access Control Server (ACS) 3.2.1 for Windows

3.2.1

Cisco Secure Access Control Server (ACS) 3.2.2 for Windows

3.2.2

Cisco Secure Access Control Server 3.3

3.3

Cisco Secure Access Control Server (ACS) 3.3(1) for Windows

3.3\(1\)

Cisco Secure Access Control Server (ACS) 3.3.1 for Windows

3.3.1

Cisco Secure Access Control Server (ACS) 3.3.2 for Windows

3.3.2

Cisco Support Tools

Cisco Web Collaboration Option

Cisco Call Manager 1.0

1.0

Cisco Call Manager 2.0

2.0

Cisco Call Manager 3.0

3.0

Cisco Call Manager 3.1

3.1

Cisco Call Manager 3.1.2

3.1\(2\)

Cisco Call Manager 3.1.3a

3.1\(3a\)

Cisco Call Manager 3.2

3.2

Cisco Call Manager 3.3

3.3

Cisco Call Manager 3.3.3

3.3\(3\)

Cisco Call Manager 4.0

4.0

Cisco Unity Server 2.0

2.0

Cisco Unity Server 2.1

2.1

Cisco Unity Server 2.2

2.2

Cisco Unity Server 2.3

2.3

Cisco Unity Server 2.4

2.4

Cisco Unity Server 2.46

2.46

Cisco Unity Server 3.0

3.0

Cisco Unity Server 3.1

3.1

Cisco Unity Server 3.2

3.2

Cisco Unity Server 3.3

3.3

Cisco Unity Server 4.0

4.0

Cisco MGX 8230 1.2.10

1.2.10

Cisco MGX 8230 1.2.11

1.2.11

Cisco MGX 8250 1.2.10

1.2.10

Cisco MGX 8250 1.2.11

1.2.11

Cisco Aironet 1200

Cisco Aironet 350 IOS

Cisco SN 5420 Storage Router

Cisco SN 5420 Storage Router Firmware 1.1(2)

1.1\(2\)

Cisco SN 5420 Storage Router Firmware 1.1(3)

1.1\(3\)

Cisco SN 5420 Storage Router Firmware 1.1(4)

1.1\(4\)

Cisco SN 5420 Storage Router Firmware 1.1(5)

1.1\(5\)

Cisco SN 5420 Storage Router Firmware 1.1(7)

1.1\(7\)

Cisco SN 5420 Storage Router Firmware 1.1.3

1.1.3

Cisco Storage Router SN5428 2-3.3.1-K9

2-3.3.1-k9

Cisco Storage Router SN5428 2-3.3.2-K9

2-3.3.2-k9

Cisco Storage Router SN5428 2.5.1-K9

2.5.1-k9

Cisco Storage Router SN5428 3.2.1-K9

3.2.1-k9

Cisco Storage Router SN5428 3.2.2-K9

3.2.2-k9

Cisco Storage Router SN5428 3.3.1-K9

3.3.1-k9

Cisco Storage Router SN5428 3.3.2-K9

3.3.2-k9

F5 Networks Traffic Management Operating System (TMOS) 4.0

4.0

F5 Networks Traffic Management Operating System (TMOS) 4.2

4.2

F5 Networks Traffic Management Operating System (TMOS) 4.3

4.3

F5 Networks Traffic Management Operating System (TMOS) 4.4

4.4

F5 Networks Traffic Management Operating System (TMOS) 4.5

4.5

F5 Networks Traffic Management Operating System (TMOS) 4.5.6

4.5.6

F5 Networks Traffic Management Operating System (TMOS) 4.5.9

4.5.9

F5 Networks Traffic Management Operating System (TMOS) 4.5.10

4.5.10

F5 Networks Traffic Management Operating System (TMOS) 4.5.11

4.5.11

F5 Networks Traffic Management Operating System (TMOS) 4.5.12

4.5.12

F5 Networks Traffic Management Operating System (TMOS) 4.6

4.6

F5 Networks Traffic Management Operating System (TMOS) 4.6.2

4.6.2

F5 Networks Traffic Management Operating System (TMOS) 9.0

9.0

F5 Networks Traffic Management Operating System (TMOS) 9.0.1

9.0.1

F5 Networks Traffic Management Operating System (TMOS) 9.0.2

9.0.2

F5 Networks Traffic Management Operating System (TMOS) 9.0.3

9.0.3

F5 Networks Traffic Management Operating System (TMOS) 9.0.4

9.0.4

F5 Networks Traffic Management Operating System (TMOS) 9.0.5

9.0.5

References

FreeBSD-SA-05:15

SCOSA-2005.64

15393

15417

Patch

18222

18662

http://support.avaya.com/elmodocs2/security/ASA-2006-032.htm

20050518 Vulnerability in a Variant of the TCP Timestamps Option

Vendor Advisory

VU#637934

Third Party Advisory, US Government Resource

13676

Exploit

tcp-ip-timestamp-dos(20635)

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.