CVE-2004-0230

TCP, when using a large Window Size, makes it easier for remote attackers to guess sequence numbers and cause a denial of service (connection loss) to persistent TCP connections by repeatedly injecting a TCP RST packet, especially in protocols that use long-lived connections, such as BGP.

CVSS v2.0 5.0 MEDIUM

5.0^/10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:N/AC:L/Au:N/C:N/I:N/A:P

Exploitability : 10.0 / Impact : 2.9

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact PARTIAL

References

Link	Resource
ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2004-006.txt.asc	Broken Link Third Party Advisory
ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2005.3/SCOSA-2005.3.txt	Broken Link Third Party Advisory
ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2005.9/SCOSA-2005.9.txt	Broken Link Third Party Advisory
ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2005.14/SCOSA-2005.14.txt	Broken Link Third Party Advisory
ftp://patches.sgi.com/support/free/security/advisories/20040403-01-A.asc	Broken Link Third Party Advisory
http://kb.juniper.net/JSA10638	Third Party Advisory
http://marc.info/?l=bugtraq&m=108302060014745&w=2	Mailing List
http://marc.info/?l=bugtraq&m=108506952116653&w=2	Mailing List
http://secunia.com/advisories/11440	Broken Link Permissions Required Third Party Advisory VDB Entry
http://secunia.com/advisories/11458	Broken Link Permissions Required Third Party Advisory VDB Entry
http://secunia.com/advisories/22341	Broken Link Permissions Required Third Party Advisory VDB Entry
http://www.cisco.com/warp/public/707/cisco-sa-20040420-tcp-ios.shtml	Broken Link
http://www.kb.cert.org/vuls/id/415294	Third Party Advisory US Government Resource
http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html	Patch Third Party Advisory
http://www.osvdb.org/4030	Broken Link
http://www.securityfocus.com/archive/1/449179/100/0/threaded	Broken Link
http://www.securityfocus.com/bid/10183	Exploit Third Party Advisory VDB Entry
http://www.uniras.gov.uk/vuls/2004/236929/index.htm	Broken Link
http://www.us-cert.gov/cas/techalerts/TA04-111A.html	Third Party Advisory US Government Resource
http://www.vupen.com/english/advisories/2006/3983	Broken Link Permissions Required
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2005/ms05-019	Third Party Advisory
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-064	Third Party Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/15886	Third Party Advisory
https://kc.mcafee.com/corporate/index?page=content&id=SB10053	Broken Link Patch Third Party Advisory
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2689	Broken Link
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A270	Broken Link
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A3508	Broken Link
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A4791	Broken Link
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5711	Broken Link
ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2004-006.txt.asc	Broken Link Third Party Advisory
ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2005.3/SCOSA-2005.3.txt	Broken Link Third Party Advisory
ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2005.9/SCOSA-2005.9.txt	Broken Link Third Party Advisory
ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2005.14/SCOSA-2005.14.txt	Broken Link Third Party Advisory
ftp://patches.sgi.com/support/free/security/advisories/20040403-01-A.asc	Broken Link Third Party Advisory
http://kb.juniper.net/JSA10638	Third Party Advisory
http://marc.info/?l=bugtraq&m=108302060014745&w=2	Mailing List
http://marc.info/?l=bugtraq&m=108506952116653&w=2	Mailing List
http://secunia.com/advisories/11440	Broken Link Permissions Required Third Party Advisory VDB Entry
http://secunia.com/advisories/11458	Broken Link Permissions Required Third Party Advisory VDB Entry
http://secunia.com/advisories/22341	Broken Link Permissions Required Third Party Advisory VDB Entry
http://www.cisco.com/warp/public/707/cisco-sa-20040420-tcp-ios.shtml	Broken Link
http://www.kb.cert.org/vuls/id/415294	Third Party Advisory US Government Resource
http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html	Patch Third Party Advisory
http://www.osvdb.org/4030	Broken Link
http://www.securityfocus.com/archive/1/449179/100/0/threaded	Broken Link
http://www.securityfocus.com/bid/10183	Exploit Third Party Advisory VDB Entry
http://www.uniras.gov.uk/vuls/2004/236929/index.htm	Broken Link
http://www.us-cert.gov/cas/techalerts/TA04-111A.html	Third Party Advisory US Government Resource
http://www.vupen.com/english/advisories/2006/3983	Broken Link Permissions Required
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2005/ms05-019	Third Party Advisory
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-064	Third Party Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/15886	Third Party Advisory
https://kc.mcafee.com/corporate/index?page=content&id=SB10053	Broken Link Patch Third Party Advisory
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2689	Broken Link
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A270	Broken Link
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A3508	Broken Link
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A4791	Broken Link
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5711	Broken Link

Configurations

Configuration 1 (hide)

OR	cpe:2.3:o:juniper:junos::::::::
	cpe:2.3:o:juniper:junos:11.4:-::::::
	cpe:2.3:o:juniper:junos:11.4:r1::::::
	cpe:2.3:o:juniper:junos:11.4:r10::::::
	cpe:2.3:o:juniper:junos:11.4:r2::::::
	cpe:2.3:o:juniper:junos:11.4:r3::::::
	cpe:2.3:o:juniper:junos:11.4:r4::::::
	cpe:2.3:o:juniper:junos:11.4:r5::::::
	cpe:2.3:o:juniper:junos:11.4:r6::::::
	cpe:2.3:o:juniper:junos:11.4:r7::::::
	cpe:2.3:o:juniper:junos:11.4:r8::::::
	cpe:2.3:o:juniper:junos:11.4:r9::::::
	cpe:2.3:o:juniper:junos:11.4r13:s2::::::
	cpe:2.3:o:juniper:junos:11.4x27:::::::*
	cpe:2.3:o:juniper:junos:12.1:-::::::
	cpe:2.3:o:juniper:junos:12.1r:::::::*
	cpe:2.3:o:juniper:junos:12.1x44:-::::::
	cpe:2.3:o:juniper:junos:12.1x44:d10::::::
	cpe:2.3:o:juniper:junos:12.1x44:d15::::::
	cpe:2.3:o:juniper:junos:12.1x44:d20::::::
	cpe:2.3:o:juniper:junos:12.1x44:d25::::::
	cpe:2.3:o:juniper:junos:12.1x44:d30::::::
	cpe:2.3:o:juniper:junos:12.1x44:d35::::::
	cpe:2.3:o:juniper:junos:12.1x45:-::::::
	cpe:2.3:o:juniper:junos:12.1x45:d10::::::
	cpe:2.3:o:juniper:junos:12.1x45:d15::::::
	cpe:2.3:o:juniper:junos:12.1x45:d20::::::
	cpe:2.3:o:juniper:junos:12.1x46:-::::::
	cpe:2.3:o:juniper:junos:12.1x46:d10::::::
	cpe:2.3:o:juniper:junos:12.1x46:d15::::::
	cpe:2.3:o:juniper:junos:12.1x47:-::::::
	cpe:2.3:o:juniper:junos:12.2:-::::::
	cpe:2.3:o:juniper:junos:12.2:r1::::::
	cpe:2.3:o:juniper:junos:12.2:r2::::::
	cpe:2.3:o:juniper:junos:12.2:r3::::::
	cpe:2.3:o:juniper:junos:12.2:r4::::::
	cpe:2.3:o:juniper:junos:12.2:r5::::::
	cpe:2.3:o:juniper:junos:12.2:r6::::::
	cpe:2.3:o:juniper:junos:12.2:r7::::::
	cpe:2.3:o:juniper:junos:12.3:-::::::
	cpe:2.3:o:juniper:junos:12.3:r1::::::
	cpe:2.3:o:juniper:junos:12.3:r2::::::
	cpe:2.3:o:juniper:junos:12.3:r3::::::
	cpe:2.3:o:juniper:junos:12.3:r4::::::
	cpe:2.3:o:juniper:junos:12.3:r5::::::
	cpe:2.3:o:juniper:junos:13.1:-::::::
	cpe:2.3:o:juniper:junos:13.1:r1::::::
	cpe:2.3:o:juniper:junos:13.1:r2::::::
	cpe:2.3:o:juniper:junos:13.1:r3::::::
	cpe:2.3:o:juniper:junos:13.2:-::::::
	cpe:2.3:o:juniper:junos:13.2:r1::::::
	cpe:2.3:o:juniper:junos:13.2:r2::::::
	cpe:2.3:o:juniper:junos:13.2:r3::::::
	cpe:2.3:o:juniper:junos:13.3:-::::::
	cpe:2.3:o:juniper:junos:13.3:r1::::::

Configuration 2 (hide)

OR	cpe:2.3:o:microsoft:windows_2000:-:sp3::::::
	cpe:2.3:o:microsoft:windows_2000:-:sp4::::::
	cpe:2.3:o:microsoft:windows_98:-:::::::*
	cpe:2.3:o:microsoft:windows_98se:-:::::::*
	cpe:2.3:o:microsoft:windows_server_2003:-::::::itanium:
	cpe:2.3:o:microsoft:windows_server_2003:-::::::x64:
	cpe:2.3:o:microsoft:windows_server_2003:-:sp1:::::-:*
	cpe:2.3:o:microsoft:windows_server_2003:-:sp1:::::itanium:*
	cpe:2.3:o:microsoft:windows_xp:-::x64:::::
	cpe:2.3:o:microsoft:windows_xp:-:sp1::::::
	cpe:2.3:o:microsoft:windows_xp:-:sp1:::::itanium:*
	cpe:2.3:o:microsoft:windows_xp:-:sp2::::::

Configuration 3 (hide)

OR	cpe:2.3:o:oracle:solaris:10:::::::*
	cpe:2.3:o:oracle:solaris:11:::::::*

Configuration 4 (hide)

cpe:2.3:a:openpgp:openpgp:2.6.2:*:*:*:*:*:*:*

Configuration 5 (hide)

OR	cpe:2.3:a:mcafee:network_data_loss_prevention::::::::
	cpe:2.3:a:mcafee:network_data_loss_prevention:9.2.0:::::::*
	cpe:2.3:a:mcafee:network_data_loss_prevention:9.2.1:::::::*
	cpe:2.3:a:mcafee:network_data_loss_prevention:9.2.2:::::::*

Configuration 6 (hide)

OR	cpe:2.3:o:netbsd:netbsd:1.5:::::::*
	cpe:2.3:o:netbsd:netbsd:1.5.1:::::::*
	cpe:2.3:o:netbsd:netbsd:1.5.2:::::::*
	cpe:2.3:o:netbsd:netbsd:1.5.3:::::::*
	cpe:2.3:o:netbsd:netbsd:1.6:::::::*
	cpe:2.3:o:netbsd:netbsd:1.6.1:::::::*
	cpe:2.3:o:netbsd:netbsd:1.6.2:::::::*
	cpe:2.3:o:netbsd:netbsd:2.0:::::::*

Configuration 7 (hide)

OR	cpe:2.3:o:xinuos:openserver:5.0.6:::::::*
	cpe:2.3:o:xinuos:openserver:5.0.7:::::::*

Configuration 8 (hide)

OR	cpe:2.3:o:xinuos:unixware:7.1.1:::::::*
	cpe:2.3:o:xinuos:unixware:7.1.3:::::::*

History

No history.

Information

Published : 2004-08-18 04:00

Updated : 2025-05-02 16:40

NVD link : CVE-2004-0230

Mitre link : CVE-2004-0230

CVE.ORG link : CVE-2004-0230

JSON object : View

Products Affected

xinuos

openserver
unixware

netbsd

netbsd

openpgp

openpgp

microsoft

windows_xp
windows_server_2003
windows_98se
windows_98
windows_2000

mcafee

network_data_loss_prevention

juniper

junos

oracle

solaris

CWE

NVD-CWE-Other

5.0 /10