Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-0641

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2004-0641
Last Modified 05 Sep 2008 04:38:59
Published 05 Aug 2004 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2004-0641

Summary

Thomson SpeedTouch 510 ADSL Router with firmware GV8BAA3.270, and possibly earlier versions, generates predictable TCP Initial Sequence Numbers (ISNs), which allows remote attackers to spoof or hijack TCP connections.

Vulnerable Systems


References

XF - speedtouch-hijack-connection(16919)

BID - 10881

IDEFENSE - 20040805 Thompson SpeedTouch Home ADSL Modem Predictable TCP ISN Generation

AUSCERT - ESB-2004.0504

SECUNIA - 12238


Last Updated: 27 May 2016 10:38:42