CVE-2005-3774
CVE-2005-3774
Cisco PIX 6.3 and 7.0 allows remote attackers to cause a denial of service (blocked new connections) via spoofed TCP packets that cause the PIX to create embryonic connections that that would not produce a valid connection with the end system, including (1) SYN packets with invalid checksums, which do not result in a RST; or, from an external interface, (2) one byte of "meaningless data," or (3) a TTL that is one less than needed to reach the internal destination.
Affected products
n/a · n/apublic PoCs found — 2
exploitdbwww.exploit-db.com/exploits/1338unverifiedexploitdbwww.exploit-db.com/exploits/26548unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://lists.grok.org.uk/pipermail/full-disclosure/2005-November/038971.htmlhttp://lists.grok.org.uk/pipermail/full-disclosure/2005-November/038983.htmlhttp://secunia.com/advisories/17670http://securitytracker.com/id?1015256https://exchange.xforce.ibmcloud.com/vulnerabilities/25077https://exchange.xforce.ibmcloud.com/vulnerabilities/25079http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_security_notice09186a0080624a37.htmlhttp://www.cisco.com/warp/public/707/cisco-response-20051122-pix.shtmlhttp://www.kb.cert.org/vuls/id/853540http://www.osvdb.org/24140http://www.securityfocus.com/archive/1/417458/30/0/threadedhttp://www.securityfocus.com/archive/1/426989/100/0/threaded