Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2003-1230


Vulnerability Score 6.4 6.4
CVE Id CVE-2003-1230
Last Modified 05 Sep 2008 04:36:23
Published 31 Dec 2003 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE



The implementation of SYN cookies (syncookies) in FreeBSD 4.5 through 5.0-RELEASE-p3 uses only 32-bit internal keys when generating syncookies, which makes it easier for remote attackers to conduct brute force ISN guessing attacks and spoof legitimate traffic.

Vulnerable Systems


XF - freebsd-syncookie-brute-force(11397)

BID - 6920

FREEBSD - FreeBSD-SA-03:03

SECUNIA - 8142

OSVDB - 19785

Last Updated: 27 May 2016 10:38:17