Details of VAR-200403-0072

ID

VAR-200403-0072

CVE

CVE-2004-0171

TITLE

FreeBSD fails to limit number of TCP segments held in reassembly queue

Trust: 0.8

sources: CERT/CC: VU#395670

DESCRIPTION

FreeBSD 5.1 and earlier, and Mac OS X before 10.3.4, allows remote attackers to cause a denial of service (resource exhaustion of memory buffers and system crash) via a large number of out-of-sequence TCP packets, which prevents the operating system from creating new connections. FreeBSD fails to limit the number of TCP segments held in a reassembly queue which could allow an attacker to exhaust all available memory buffers (mbufs) on the destination system resulting in a denial-of-service condition. FreeBSD of FreeBSD Unspecified vulnerabilities exist in products from multiple vendors.None. A problem in the handling of out-of-sequence packets has been identified in BSD variants such as FreeBSD and OpenBSD. Because of this, it may be possible for remote attackers to deny service to legitimate users of vulnerable systems

Trust: 2.61

sources: NVD: CVE-2004-0171 // CERT/CC: VU#395670 // JVNDB: JVNDB-2004-000712 // BID: 9792

AFFECTED PRODUCTS

vendor:	freebsd	model:	freebsd	scope:	eq	version:	4.7	Trust: 1.9
vendor:	freebsd	model:	freebsd	scope:	eq	version:	4.6.2	Trust: 1.9
vendor:	openbsd	model:	openbsd	scope:	eq	version:	3.4	Trust: 1.3
vendor:	openbsd	model:	openbsd	scope:	eq	version:	3.3	Trust: 1.3
vendor:	freebsd	model:	freebsd	scope:	eq	version:	5.2	Trust: 1.3
vendor:	freebsd	model:	freebsd	scope:	eq	version:	5.1	Trust: 1.3
vendor:	freebsd	model:	freebsd	scope:	eq	version:	5.0	Trust: 1.3
vendor:	freebsd	model:	freebsd	scope:	eq	version:	4.9	Trust: 1.3
vendor:	freebsd	model:	freebsd	scope:	eq	version:	4.8	Trust: 1.3
vendor:	freebsd	model:	-	scope:	-	version:	-	Trust: 0.8
vendor:	freebsd	model:	freebsd	scope:	-	version:	-	Trust: 0.8
vendor:	openbsd	model:	openbsd	scope:	-	version:	-	Trust: 0.8
vendor:	sgi	model:	irix	scope:	eq	version:	6.5.25	Trust: 0.3
vendor:	sgi	model:	irix	scope:	eq	version:	6.5.24	Trust: 0.3
vendor:	sgi	model:	irix	scope:	eq	version:	6.5.23	Trust: 0.3
vendor:	sgi	model:	irix	scope:	eq	version:	6.5.22	Trust: 0.3
vendor:	f5	model:	big-ip	scope:	eq	version:	4.5.11	Trust: 0.3
vendor:	f5	model:	big-ip	scope:	eq	version:	4.5.10	Trust: 0.3
vendor:	f5	model:	big-ip	scope:	eq	version:	4.5.9	Trust: 0.3
vendor:	f5	model:	big-ip	scope:	eq	version:	4.5.6	Trust: 0.3
vendor:	f5	model:	big-ip	scope:	eq	version:	4.5	Trust: 0.3
vendor:	f5	model:	big-ip	scope:	eq	version:	4.4	Trust: 0.3
vendor:	f5	model:	big-ip	scope:	eq	version:	4.3	Trust: 0.3
vendor:	f5	model:	big-ip	scope:	eq	version:	4.2	Trust: 0.3
vendor:	f5	model:	big-ip	scope:	eq	version:	2.1	Trust: 0.3
vendor:	f5	model:	big-ip	scope:	eq	version:	2.0	Trust: 0.3
vendor:	f5	model:	3-dns	scope:	eq	version:	4.6.2	Trust: 0.3
vendor:	f5	model:	3-dns	scope:	eq	version:	4.6	Trust: 0.3
vendor:	f5	model:	3-dns	scope:	eq	version:	4.5	Trust: 0.3
vendor:	f5	model:	3-dns	scope:	eq	version:	4.4	Trust: 0.3
vendor:	f5	model:	3-dns	scope:	eq	version:	4.3	Trust: 0.3
vendor:	f5	model:	3-dns	scope:	eq	version:	4.2	Trust: 0.3
vendor:	borderware	model:	firewall server	scope:	eq	version:	7.0	Trust: 0.3

sources: CERT/CC: VU#395670 // BID: 9792 // JVNDB: JVNDB-2004-000712 // CNNVD: CNNVD-200403-072 // NVD: CVE-2004-0171

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2004-0171
value:	MEDIUM
Trust: 1.0
CARNEGIE MELLON:	VU#395670
value:	6.83
Trust: 0.8
NVD:	CVE-2004-0171
value:	MEDIUM
Trust: 0.8
CNNVD:	CNNVD-200403-072
value:	MEDIUM
Trust: 0.6

nvd@nist.gov:	CVE-2004-0171
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:N/I:N/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	PARTIAL
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.8

sources: CERT/CC: VU#395670 // JVNDB: JVNDB-2004-000712 // CNNVD: CNNVD-200403-072 // NVD: CVE-2004-0171

PROBLEMTYPE DATA

problemtype:	NVD-CWE-Other	Trust: 1.0
problemtype:	others (CWE-Other) [NVD evaluation ]	Trust: 0.8

sources: JVNDB: JVNDB-2004-000712 // NVD: CVE-2004-0171

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-200403-072

TYPE

other

Trust: 0.6

sources: CNNVD: CNNVD-200403-072

EXTERNAL IDS

db:	NVD	id:	CVE-2004-0171	Trust: 3.5
db:	CERT/CC	id:	VU#395670	Trust: 3.2
db:	BID	id:	9792	Trust: 2.7
db:	OSVDB	id:	4124	Trust: 1.6
db:	JVNDB	id:	JVNDB-2004-000712	Trust: 0.8
db:	APPLE	id:	APPLE-SA-2004-05-28	Trust: 0.6
db:	IDEFENSE	id:	20040302 FREEBSD MEMORY BUFFER EXHAUSTION DENIAL OF SERVICE VULNERABILITY	Trust: 0.6
db:	FREEBSD	id:	FREEBSD-SA-04:04	Trust: 0.6
db:	XF	id:	15369	Trust: 0.6
db:	CNNVD	id:	CNNVD-200403-072	Trust: 0.6

sources: CERT/CC: VU#395670 // BID: 9792 // JVNDB: JVNDB-2004-000712 // CNNVD: CNNVD-200403-072 // NVD: CVE-2004-0171

REFERENCES

url:	http://www.idefense.com/application/poi/display?id=78&type=vulnerabilities	Trust: 3.5
url:	ftp://ftp.freebsd.org/pub/freebsd/cert/advisories/freebsd-sa-04:04.tcp.asc	Trust: 2.4
url:	http://www.kb.cert.org/vuls/id/395670	Trust: 2.4
url:	http://lists.seifried.org/pipermail/security/2004-may/003743.html	Trust: 2.4
url:	http://www.securityfocus.com/bid/9792	Trust: 2.4
url:	https://exchange.xforce.ibmcloud.com/vulnerabilities/15369	Trust: 1.8
url:	http://www.osvdb.org/4124	Trust: 1.6
url:	https://ialert.idefense.com/kodetails.jhtml?irid=207650	Trust: 0.8
url:	http://www.ietf.org/rfc/rfc793.txt	Trust: 0.8
url:	https://nvd.nist.gov/vuln/detail/cve-2004-0171	Trust: 0.8
url:	http://xforce.iss.net/xforce/xfdb/15369	Trust: 0.6
url:	http://www.borderware.com/products/firewall.php	Trust: 0.3
url:	http://www.freebsd.org/	Trust: 0.3
url:	http://docs.freebsd.org/cgi/getmsg.cgi?fetch=97407+0+/usr/local/www/db/text/2004/freebsd-net/20040222.freebsd-net	Trust: 0.3
url:	http://www.openbsd.org	Trust: 0.3
url:	http://www.borderware.com/	Trust: 0.3

sources: CERT/CC: VU#395670 // BID: 9792 // JVNDB: JVNDB-2004-000712 // CNNVD: CNNVD-200403-072 // NVD: CVE-2004-0171

CREDITS

Alexander Cuttergo

Trust: 0.6

sources: CNNVD: CNNVD-200403-072

SOURCES

db:	CERT/CC	id:	VU#395670
db:	BID	id:	9792
db:	JVNDB	id:	JVNDB-2004-000712
db:	CNNVD	id:	CNNVD-200403-072
db:	NVD	id:	CVE-2004-0171

LAST UPDATE DATE

2024-08-14T13:51:16.271000+00:00

SOURCES UPDATE DATE

db:	CERT/CC	id:	VU#395670	date:	2004-03-04T00:00:00
db:	BID	id:	9792	date:	2009-07-12T03:06:00
db:	JVNDB	id:	JVNDB-2004-000712	date:	2024-05-27T02:21:00
db:	CNNVD	id:	CNNVD-200403-072	date:	2005-05-13T00:00:00
db:	NVD	id:	CVE-2004-0171	date:	2017-10-10T01:30:18.673

SOURCES RELEASE DATE

db:	CERT/CC	id:	VU#395670	date:	2004-03-04T00:00:00
db:	BID	id:	9792	date:	2004-03-02T00:00:00
db:	JVNDB	id:	JVNDB-2004-000712	date:	2024-05-27T00:00:00
db:	CNNVD	id:	CNNVD-200403-072	date:	2004-03-15T00:00:00
db:	NVD	id:	CVE-2004-0171	date:	2004-03-15T05:00:00