Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2001-0288

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2001-0288
Last Modified 05 Sep 2008 04:23:44
Published 03 May 2001 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2001-0288

Summary

Cisco switches and routers running IOS 12.1 and earlier produce predictable TCP Initial Sequence Numbers (ISNs), which allows remote attackers to spoof or hijack TCP connections.

Vulnerable Systems

Operating System

  • Cisco Ios 12.1


References

CISCO - 20010228 Cisco IOS Software TCP Initial Sequence Number Randomization Improvements


Last Updated: 27 May 2016 10:36:12