Unrated severityNVD Advisory· Published May 5, 2004· Updated Aug 8, 2024

CVE-2004-0230

Description

TCP, when using a large Window Size, makes it easier for remote attackers to guess sequence numbers and cause a denial of service (connection loss) to persistent TCP connections by repeatedly injecting a TCP RST packet, especially in protocols that use long-lived connections, such as BGP.

Affected products

osv-coords66 versions
pkg:rpm/suse/kernel-bigmem&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4 pkg:rpm/suse/kernel-bigmem&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2011%20SP4 pkg:rpm/suse/kernel-bigsmp&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP3-LTSS pkg:rpm/suse/kernel-bigsmp&distro=SUSE%20Manager%202.1 pkg:rpm/suse/kernel-bigsmp&distro=SUSE%20Manager%20Proxy%202.1 pkg:rpm/suse/kernel-bigsmp&distro=SUSE%20OpenStack%20Cloud%205 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Point%20of%20Sale%2011%20SP3 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP2-LTSS pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP3-LTSS pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2011%20SP4 pkg:rpm/suse/kernel-default&distro=SUSE%20Manager%202.1 pkg:rpm/suse/kernel-default&distro=SUSE%20Manager%20Proxy%202.1 pkg:rpm/suse/kernel-default&distro=SUSE%20OpenStack%20Cloud%205 pkg:rpm/suse/kernel-docs&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2011%20SP4 pkg:rpm/suse/kernel-ec2&distro=SUSE%20Linux%20Enterprise%20Point%20of%20Sale%2011%20SP3 pkg:rpm/suse/kernel-ec2&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP2-LTSS pkg:rpm/suse/kernel-ec2&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP3-LTSS pkg:rpm/suse/kernel-ec2&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4 pkg:rpm/suse/kernel-ec2&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2011%20SP4 pkg:rpm/suse/kernel-ec2&distro=SUSE%20Manager%202.1 pkg:rpm/suse/kernel-ec2&distro=SUSE%20Manager%20Proxy%202.1 pkg:rpm/suse/kernel-ec2&distro=SUSE%20OpenStack%20Cloud%205 pkg:rpm/suse/kernel-pae&distro=SUSE%20Linux%20Enterprise%20Point%20of%20Sale%2011%20SP3 pkg:rpm/suse/kernel-pae&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP2-LTSS pkg:rpm/suse/kernel-pae&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP3-LTSS pkg:rpm/suse/kernel-pae&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4 pkg:rpm/suse/kernel-pae&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2011%20SP4 pkg:rpm/suse/kernel-ppc64&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4 pkg:rpm/suse/kernel-ppc64&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2011%20SP4 pkg:rpm/suse/kernel-rt&distro=SUSE%20Linux%20Enterprise%20Real%20Time%2011%20SP4 pkg:rpm/suse/kernel-rt_trace&distro=SUSE%20Linux%20Enterprise%20Real%20Time%2011%20SP4 pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Point%20of%20Sale%2011%20SP3 pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP2-LTSS pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP3-LTSS pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4 pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2011%20SP4 pkg:rpm/suse/kernel-source&distro=SUSE%20Manager%202.1 pkg:rpm/suse/kernel-source&distro=SUSE%20Manager%20Proxy%202.1 pkg:rpm/suse/kernel-source&distro=SUSE%20OpenStack%20Cloud%205 pkg:rpm/suse/kernel-source-rt&distro=SUSE%20Linux%20Enterprise%20Real%20Time%2011%20SP4 pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Point%20of%20Sale%2011%20SP3 pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP2-LTSS pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP3-LTSS pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4 pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2011%20SP4 pkg:rpm/suse/kernel-syms&distro=SUSE%20Manager%202.1 pkg:rpm/suse/kernel-syms&distro=SUSE%20Manager%20Proxy%202.1 pkg:rpm/suse/kernel-syms&distro=SUSE%20OpenStack%20Cloud%205 pkg:rpm/suse/kernel-syms-rt&distro=SUSE%20Linux%20Enterprise%20Real%20Time%2011%20SP4 pkg:rpm/suse/kernel-trace&distro=SUSE%20Linux%20Enterprise%20Point%20of%20Sale%2011%20SP3 pkg:rpm/suse/kernel-trace&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP2-LTSS pkg:rpm/suse/kernel-trace&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP3-LTSS pkg:rpm/suse/kernel-trace&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4 pkg:rpm/suse/kernel-trace&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2011%20SP4 pkg:rpm/suse/kernel-trace&distro=SUSE%20Manager%202.1 pkg:rpm/suse/kernel-trace&distro=SUSE%20Manager%20Proxy%202.1 pkg:rpm/suse/kernel-trace&distro=SUSE%20OpenStack%20Cloud%205 pkg:rpm/suse/kernel-xen&distro=SUSE%20Linux%20Enterprise%20Point%20of%20Sale%2011%20SP3 pkg:rpm/suse/kernel-xen&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP2-LTSS pkg:rpm/suse/kernel-xen&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP3-LTSS pkg:rpm/suse/kernel-xen&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4 pkg:rpm/suse/kernel-xen&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2011%20SP4 pkg:rpm/suse/kernel-xen&distro=SUSE%20Manager%202.1 pkg:rpm/suse/kernel-xen&distro=SUSE%20Manager%20Proxy%202.1 pkg:rpm/suse/kernel-xen&distro=SUSE%20OpenStack%20Cloud%205
< 3.0.101-94.1+ 65 more
- (no CPE)range: < 3.0.101-94.1
- (no CPE)range: < 3.0.101-94.1
- (no CPE)range: < 3.0.101-0.47.96.1
- (no CPE)range: < 3.0.101-0.47.96.1
- (no CPE)range: < 3.0.101-0.47.96.1
- (no CPE)range: < 3.0.101-0.47.96.1
- (no CPE)range: < 3.0.101-0.47.96.1
- (no CPE)range: < 3.0.101-0.7.53.1
- (no CPE)range: < 3.0.101-0.47.96.1
- (no CPE)range: < 3.0.101-94.1
- (no CPE)range: < 3.0.101-94.1
- (no CPE)range: < 3.0.101-0.47.96.1
- (no CPE)range: < 3.0.101-0.47.96.1
- (no CPE)range: < 3.0.101-0.47.96.1
- (no CPE)range: < 3.0.101-94.2
- (no CPE)range: < 3.0.101-0.47.96.1
- (no CPE)range: < 3.0.101-0.7.53.1
- (no CPE)range: < 3.0.101-0.47.96.1
- (no CPE)range: < 3.0.101-94.1
- (no CPE)range: < 3.0.101-94.1
- (no CPE)range: < 3.0.101-0.47.96.1
- (no CPE)range: < 3.0.101-0.47.96.1
- (no CPE)range: < 3.0.101-0.47.96.1
- (no CPE)range: < 3.0.101-0.47.96.1
- (no CPE)range: < 3.0.101-0.7.53.1
- (no CPE)range: < 3.0.101-0.47.96.1
- (no CPE)range: < 3.0.101-94.1
- (no CPE)range: < 3.0.101-94.1
- (no CPE)range: < 3.0.101-94.1
- (no CPE)range: < 3.0.101-94.1
- (no CPE)range: < 3.0.101.rt130-68.1
- (no CPE)range: < 3.0.101.rt130-68.1
- (no CPE)range: < 3.0.101-0.47.96.1
- (no CPE)range: < 3.0.101-0.7.53.1
- (no CPE)range: < 3.0.101-0.47.96.1
- (no CPE)range: < 3.0.101-94.1
- (no CPE)range: < 3.0.101-94.1
- (no CPE)range: < 3.0.101-0.47.96.1
- (no CPE)range: < 3.0.101-0.47.96.1
- (no CPE)range: < 3.0.101-0.47.96.1
- (no CPE)range: < 3.0.101.rt130-68.1
- (no CPE)range: < 3.0.101-0.47.96.1
- (no CPE)range: < 3.0.101-0.7.53.1
- (no CPE)range: < 3.0.101-0.47.96.1
- (no CPE)range: < 3.0.101-94.1
- (no CPE)range: < 3.0.101-94.1
- (no CPE)range: < 3.0.101-0.47.96.1
- (no CPE)range: < 3.0.101-0.47.96.1
- (no CPE)range: < 3.0.101-0.47.96.1
- (no CPE)range: < 3.0.101.rt130-68.1
- (no CPE)range: < 3.0.101-0.47.96.1
- (no CPE)range: < 3.0.101-0.7.53.1
- (no CPE)range: < 3.0.101-0.47.96.1
- (no CPE)range: < 3.0.101-94.1
- (no CPE)range: < 3.0.101-94.1
- (no CPE)range: < 3.0.101-0.47.96.1
- (no CPE)range: < 3.0.101-0.47.96.1
- (no CPE)range: < 3.0.101-0.47.96.1
- (no CPE)range: < 3.0.101-0.47.96.1
- (no CPE)range: < 3.0.101-0.7.53.1
- (no CPE)range: < 3.0.101-0.47.96.1
- (no CPE)range: < 3.0.101-94.1
- (no CPE)range: < 3.0.101-94.1
- (no CPE)range: < 3.0.101-0.47.96.1
- (no CPE)range: < 3.0.101-0.47.96.1
- (no CPE)range: < 3.0.101-0.47.96.1

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2004-006.txt.ascmitrevendor-advisoryx_refsource_NETBSD
ftp.sco.com/pub/updates/OpenServer/SCOSA-2005.3/SCOSA-2005.3.txtmitrevendor-advisoryx_refsource_SCO
ftp.sco.com/pub/updates/OpenServer/SCOSA-2005.9/SCOSA-2005.9.txtmitrevendor-advisoryx_refsource_SCO
ftp.sco.com/pub/updates/UnixWare/SCOSA-2005.14/SCOSA-2005.14.txtmitrevendor-advisoryx_refsource_SCO
patches.sgi.com/support/free/security/advisories/20040403-01-A.ascmitrevendor-advisoryx_refsource_SGI
marc.infomitrevendor-advisoryx_refsource_HP
secunia.com/advisories/11440mitrethird-party-advisoryx_refsource_SECUNIA
secunia.com/advisories/11458mitrethird-party-advisoryx_refsource_SECUNIA
secunia.com/advisories/22341mitrethird-party-advisoryx_refsource_SECUNIA
www.cisco.com/warp/public/707/cisco-sa-20040420-tcp-ios.shtmlmitrevendor-advisoryx_refsource_CISCO
www.kb.cert.org/vuls/id/415294mitrethird-party-advisoryx_refsource_CERT-VN
www.securityfocus.com/archive/1/449179/100/0/threadedmitrevendor-advisoryx_refsource_HP
www.us-cert.gov/cas/techalerts/TA04-111A.htmlmitrethird-party-advisoryx_refsource_CERT
docs.microsoft.com/en-us/security-updates/securitybulletins/2005/ms05-019mitrevendor-advisoryx_refsource_MS
docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-064mitrevendor-advisoryx_refsource_MS
kb.juniper.net/JSA10638mitrex_refsource_CONFIRM
marc.infomitremailing-listx_refsource_BUGTRAQ
www.oracle.com/technetwork/topics/security/cpujan2015-1972971.htmlmitrex_refsource_CONFIRM
www.osvdb.org/4030mitrevdb-entryx_refsource_OSVDB
www.securityfocus.com/bid/10183mitrevdb-entryx_refsource_BID
www.uniras.gov.uk/vuls/2004/236929/index.htmmitrex_refsource_MISC
www.vupen.com/english/advisories/2006/3983mitrevdb-entryx_refsource_VUPEN
exchange.xforce.ibmcloud.com/vulnerabilities/15886mitrevdb-entryx_refsource_XF
kc.mcafee.com/corporate/indexmitrex_refsource_CONFIRM
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2689mitrevdb-entrysignaturex_refsource_OVAL
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A270mitrevdb-entrysignaturex_refsource_OVAL
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A3508mitrevdb-entrysignaturex_refsource_OVAL
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A4791mitrevdb-entrysignaturex_refsource_OVAL
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5711mitrevdb-entrysignaturex_refsource_OVAL

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.007
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000