CVE-2005-0356

Published: 31/05/2005 Updated: 30/04/2019

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

VMScore: 505

Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P

Multiple TCP implementations with Protection Against Wrapped Sequence Numbers (PAWS) with the timestamps option enabled allow remote malicious users to cause a denial of service (connection loss) via a spoofed packet with a large timer value, which causes the host to discard later packets because they appear to be too old.

Vulnerable Product	Search on Vulmon	Subscribe to Product
cisco secure access control server 3.2
cisco mgx 8230 1.2.11
cisco mgx 8250 1.2.10
cisco secure access control server 3.2.2
cisco personal assistant 1.3(2)
cisco unity server 2.2
cisco secure access control server 2.4
cisco secure access control server 3.1.1
cisco personal assistant 1.3(4)
cisco unity server 3.0
cisco secure access control server 2.6.3
cisco interactive voice response
cisco secure access control server 2.42
cisco call manager 3.0
cisco call manager 3.1(3a)
cisco secure access control server 3.3.2
cisco unity server 3.1
cisco call manager 1.0
cisco unity server 3.3
cisco personal assistant 1.3(3)
cisco secure access control server 2.1
cisco secure access control server 3.3(1)
cisco secure access control server 2.6.2
cisco secure access control server 2.3.6.1
cisco support tools
cisco call manager 3.2
cisco call manager 3.1(2)
cisco personal assistant 1.4(2)
cisco unity server 2.3
cisco unity server 3.2
cisco secure access control server 2.0
cisco secure access control server 3.0.1
cisco secure access control server 2.3
cisco unity server 2.1
cisco unity server 2.46
cisco call manager 3.3
cisco web collaboration option
cisco call manager 2.0
cisco secure access control server 3.0
cisco mgx 8250 1.2.11
cisco remote monitoring suite option
cisco secure access control server 3.0.3
cisco unity server 2.4
cisco ip contact center express
cisco mgx 8230 1.2.10
cisco personal assistant 1.4(1)
cisco secure access control server 2.5
cisco secure access control server 2.6
cisco call manager 3.1
cisco secure access control server 3.2(1.20)
cisco secure access control server 3.1
cisco intelligent contact manager 5.0
cisco unity server 2.0
cisco secure access control server 3.3.1
cisco secure access control server 3.3
cisco secure access control server 2.6.4
cisco secure access control server 3.2(3)
cisco agent desktop
cisco e-mail manager
cisco meetingplace
cisco secure access control server 3.2.1
cisco call manager 4.0
cisco call manager 3.3(3)
cisco secure access control server 2.3.5.1
cisco secure access control server 3.2(1)
hitachi alaxala ax
cisco secure access control server 3.2(2)
cisco emergency responder 1.1
cisco ip contact center enterprise
cisco unity server 4.0
cisco personal assistant 1.3(1)
cisco ciscoworks access control list manager 1.5
cisco ciscoworks access control list manager 1.6
cisco ciscoworks common management foundation 2.0
cisco ciscoworks common management foundation 2.1
cisco ciscoworks common management foundation 2.2
cisco ciscoworks common services 2.2
cisco ciscoworks lms 1.3
cisco ciscoworks vpn security management solution
cisco ciscoworks windows
cisco webns 7.10 (05.07)s
cisco webns 7.20 (03.09)s
cisco webns 7.20 (03.10)s
cisco webns 7.30 (00.08)s
cisco webns 7.30 (00.09)s
nortel business communications manager 200
nortel business communications manager 400
nortel business communications manager 1000
nortel callpilot 200i
nortel callpilot 201i
nortel callpilot 702t
nortel callpilot 703t
nortel contact center
cisco content services switch 11000
cisco content services switch 11050
cisco content services switch 11150
cisco content services switch 11500
cisco content services switch 11501
cisco content services switch 11503
cisco content services switch 11506
cisco content services switch 11800
nortel 7220 wlan access point
nortel 7250 wlan access point
nortel ethernet routing switch 1612
nortel ethernet routing switch 1624
nortel ethernet routing switch 1648
nortel optical metro 5000
nortel optical metro 5100
nortel optical metro 5200
nortel succession communication server 1000
nortel survivable remote gateway 1.0
nortel universal signaling point 5200
nortel universal signaling point compact lite
cisco ciscoworks 1105 hosting solution engine
cisco ciscoworks 1105 wireless lan solution engine
cisco ciscoworks cd1 1st
cisco ciscoworks cd1 2nd
cisco ciscoworks cd1 3rd
cisco ciscoworks cd1 4th
cisco ciscoworks cd1 5th
cisco ciscoworks windows wug
cisco conference connection 1.1(1)
cisco conference connection 1.2
freebsd freebsd 1.1.5.1
freebsd freebsd 2.0
freebsd freebsd 2.0.5
freebsd freebsd 2.1.0
freebsd freebsd 2.1.5
freebsd freebsd 2.1.6
freebsd freebsd 2.1.6.1
freebsd freebsd 2.1.7.1
freebsd freebsd 2.2
freebsd freebsd 2.2.2
freebsd freebsd 2.2.3
freebsd freebsd 2.2.4
freebsd freebsd 2.2.5
freebsd freebsd 2.2.6
freebsd freebsd 2.2.8
freebsd freebsd 3.0
freebsd freebsd 3.1
freebsd freebsd 3.2
freebsd freebsd 3.3
freebsd freebsd 3.4
freebsd freebsd 3.5
freebsd freebsd 3.5.1
freebsd freebsd 4.0
freebsd freebsd 4.1
freebsd freebsd 4.1.1
freebsd freebsd 4.2
freebsd freebsd 4.3
freebsd freebsd 4.4
freebsd freebsd 4.5
freebsd freebsd 4.6
freebsd freebsd 4.6.2
freebsd freebsd 4.7
freebsd freebsd 4.8
freebsd freebsd 4.9
freebsd freebsd 4.10
freebsd freebsd 4.11
freebsd freebsd 5.0
freebsd freebsd 5.1
freebsd freebsd 5.2
freebsd freebsd 5.2.1
freebsd freebsd 5.3
freebsd freebsd 5.4
microsoft windows 2000
microsoft windows 2003 server enterprise
microsoft windows 2003 server enterprise 64-bit
microsoft windows 2003 server r2
microsoft windows 2003 server standard
microsoft windows 2003 server standard 64-bit
microsoft windows 2003 server web
microsoft windows xp
openbsd openbsd 3.0
openbsd openbsd 3.1
openbsd openbsd 3.2
openbsd openbsd 3.3
openbsd openbsd 3.4
openbsd openbsd 3.5
openbsd openbsd 3.6
alaxala alaxala networks ax5400s
alaxala alaxala networks ax7800r
alaxala alaxala networks ax7800s
f5 tmos 9.0.5
f5 tmos 4.5.12
f5 tmos 9.0.3
hitachi gr4000
cisco sn 5428 storage router 2-3.3.1-k9
f5 tmos 4.6
f5 tmos 9.0.2
cisco sn 5428 storage router 2-3.3.2-k9
f5 tmos 4.5
yamaha rt250i
f5 tmos 4.5.6
yamaha rt105
yamaha rtx2000
cisco aironet ap350
cisco sn 5428 storage router 2.5.1-k9
cisco sn 5420 storage router
yamaha rtx1000
hitachi gr3000
yamaha rt57i
yamaha rtv700
f5 tmos 4.3
yamaha rtx1500
cisco sn 5428 storage router 3.3.2-k9
f5 tmos 4.0
f5 tmos 4.6.2
cisco sn 5428 storage router 3.2.2-k9
yamaha rtx1100
f5 tmos 9.0
f5 tmos 4.5.10
hitachi gs4000
f5 tmos 4.2
f5 tmos 4.5.11
cisco aironet ap1200
cisco sn 5428 storage router 3.3.1-k9
f5 tmos 9.0.1
f5 tmos 4.4
f5 tmos 9.0.4
f5 tmos 4.5.9
cisco sn 5428 storage router 3.2.1-k9
yamaha rt300i
cisco sn 5420 storage router firmware 1.1(2)
cisco sn 5420 storage router firmware 1.1(7)
cisco sn 5420 storage router firmware 1.1(3)
cisco sn 5420 storage router firmware 1.1(5)
cisco sn 5420 storage router firmware 1.1.3
cisco sn 5420 storage router firmware 1.1(4)

/* * TCP does not adequately validate segments before updating timestamp value * wwwkbcertorg/vuls/id/637934 * * RFC-1323 (TCP Extensions for High Performance) * * 421 defines how the PAWS algorithm should drop packets with invalid * timestamp options: * * R1) If there is a Timestamps option in the arriving segment * and SEGTSval < ...

NVD-CWE-Other http://www.cisco.com/warp/public/707/cisco-sn-20050518-tcpts.shtml http://www.kb.cert.org/vuls/id/637934 http://www.securityfocus.com/bid/13676 http://secunia.com/advisories/15417/http://secunia.com/advisories/15393 ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-05:15.tcp.asc ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2005.64/SCOSA-2005.64.txt http://secunia.com/advisories/18222 http://support.avaya.com/elmodocs2/security/ASA-2006-032.htm http://secunia.com/advisories/18662 https://exchange.xforce.ibmcloud.com/vulnerabilities/20635 https://nvd.nist.gov https://www.exploit-db.com/exploits/1008/https://www.kb.cert.org/vuls/id/637934

Get Started

CVE-2005-0356

Vulnerability Summary

Vulnerability Trend

Exploits

References

Vulmon Search

About

Products

Connect