Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2002-0518


Vulnerability Score 5.0 5.0
CVE Id CVE-2002-0518
Last Modified 05 Sep 2008 04:28:14
Published 12 Aug 2002 12:00:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE



The SYN cache (syncache) and SYN cookie (syncookie) mechanism in FreeBSD 4.5 and earlier allows remote attackers to cause a denial of service (crash) (1) via a SYN packet that is accepted using syncookies that causes a null pointer to be referenced for the socket's TCP options, or (2) by killing and restarting a process that listens on the same socket, which does not properly clear the old inpcb pointer on restart.

Vulnerable Systems

Operating System

  • Freebsd 4.5


BID - 4524

XF - bsd-syncache-inpcb-dos(8875)

FREEBSD - FreeBSD-SA-02:20

OSVDB - 6046

XF - bsd-syncookie-pointer-dos(8873)

Last Updated: 27 May 2016 10:36:57