Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-0356

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2005-0356
Last Modified 05 Sep 2008 04:46:02
Published 31 May 2005 12:00:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2005-0356

Summary

Multiple TCP implementations with Protection Against Wrapped Sequence Numbers (PAWS) with the timestamps option enabled allow remote attackers to cause a denial of service (connection loss) via a spoofed packet with a large timer value, which causes the host to discard later packets because they appear to be too old.

Vulnerable Systems

Operating System

  • Cisco Conference Connection 1.1%281%29

  • Cisco Conference Connection 1.2

  • Cisco Content Services Switch 11500 7.10 %2805.07%29s

  • Cisco Content Services Switch 11500 7.20 %2803.09%29s

  • Cisco Content Services Switch 11500 7.20 %2803.10%29s

  • Cisco Content Services Switch 11500 7.30 %2800.08%29s

  • Cisco Content Services Switch 11500 7.30 %2800.09%29s

  • Cisco Mgx 8230 1.2.10

  • Cisco Mgx 8230 1.2.11

  • Cisco Mgx 8250 1.2.10

  • Cisco Mgx 8250 1.2.11

  • Cisco Sn 5420 Storage Router 1.1%282%29

  • Cisco Sn 5420 Storage Router 1.1%283%29

  • Cisco Sn 5420 Storage Router 1.1%284%29

  • Cisco Sn 5420 Storage Router 1.1%285%29

  • Cisco Sn 5420 Storage Router 1.1%287%29

  • Cisco Sn 5420 Storage Router 1.1.3

  • Cisco Sn 5428 Storage Router 2-3.3.1-k9

  • Cisco Sn 5428 Storage Router 2-3.3.2-k9

  • Cisco Sn 5428 Storage Router 2.5.1-k9

  • Cisco Sn 5428 Storage Router 3.2.1-k9

  • Cisco Sn 5428 Storage Router 3.2.2-k9

  • Cisco Sn 5428 Storage Router 3.3.1-k9

  • Cisco Sn 5428 Storage Router 3.3.2-k9

  • Ciscoworks 1105 Hosting Solution Engine

  • Ciscoworks 1105 Wireless Lan Solution Engine

  • Ciscoworks Cd1 1st

  • Ciscoworks Cd1 2nd

  • Ciscoworks Cd1 3rd

  • Ciscoworks Cd1 4th

  • Ciscoworks Cd1 5th

  • Ciscoworks Windows Wug

  • Freebsd 1.1.5.1

  • Freebsd 2.0

  • Freebsd 2.0.5

  • Freebsd 2.1.0

  • Freebsd 2.1.5

  • Freebsd 2.1.6

  • Freebsd 2.1.6.1

  • Freebsd 2.1.7.1

  • Freebsd 2.2

  • Freebsd 2.2.2

  • Freebsd 2.2.3

  • Freebsd 2.2.4

  • Freebsd 2.2.5

  • Freebsd 2.2.6

  • Freebsd 2.2.8

  • Freebsd 3.0

  • Freebsd 3.1

  • Freebsd 3.2

  • Freebsd 3.3

  • Freebsd 3.4

  • Freebsd 3.5

  • Freebsd 3.5.1

  • Freebsd 4.0

  • Freebsd 4.1

  • Freebsd 4.1.1

  • Freebsd 4.10

  • Freebsd 4.11

  • Freebsd 4.2

  • Freebsd 4.3

  • Freebsd 4.4

  • Freebsd 4.5

  • Freebsd 4.6

  • Freebsd 4.6.2

  • Freebsd 4.7

  • Freebsd 4.8

  • Freebsd 4.9

  • Freebsd 5.0

  • Freebsd 5.1

  • Freebsd 5.2

  • Freebsd 5.2.1

  • Freebsd 5.3

  • Freebsd 5.4

  • Microsoft Windows 2000

  • Microsoft Windows 2003 Server Enterprise

  • Microsoft Windows 2003 Server Enterprise 64-bit

  • Microsoft Windows 2003 Server R2

  • Microsoft Windows 2003 Server Standard

  • Microsoft Windows 2003 Server Standard 64-bit

  • Microsoft Windows 2003 Server Web

  • Microsoft Windows Xp

  • Openbsd 3.0

  • Openbsd 3.1

  • Openbsd 3.2

  • Openbsd 3.3

  • Openbsd 3.4

  • Openbsd 3.5

  • Openbsd 3.6

Application

  • Cisco Agent Desktop

  • Cisco E-mail Manager

  • Cisco Emergency Responder 1.1

  • Cisco Intelligent Contact Manager 5.0

  • Cisco Interactive Voice Response

  • Cisco Ip Contact Center Enterprise

  • Cisco Ip Contact Center Express

  • Cisco Meetingplace

  • Cisco Personal Assistant 1.3%281%29

  • Cisco Personal Assistant 1.3%282%29

  • Cisco Personal Assistant 1.3%283%29

  • Cisco Personal Assistant 1.3%284%29

  • Cisco Personal Assistant 1.4%281%29

  • Cisco Personal Assistant 1.4%282%29

  • Cisco Remote Monitoring Suite Option

  • Cisco Secure Access Control Server 2.0

  • Cisco Secure Access Control Server 2.1

  • Cisco Secure Access Control Server 2.3

  • Cisco Secure Access Control Server 2.3.5.1

  • Cisco Secure Access Control Server 2.3.6.1

  • Cisco Secure Access Control Server 2.4

  • Cisco Secure Access Control Server 2.42

  • Cisco Secure Access Control Server 2.5

  • Cisco Secure Access Control Server 2.6

  • Cisco Secure Access Control Server 2.6.2

  • Cisco Secure Access Control Server 2.6.3

  • Cisco Secure Access Control Server 2.6.4

  • Cisco Secure Access Control Server 3.0

  • Cisco Secure Access Control Server 3.0.1

  • Cisco Secure Access Control Server 3.0.3

  • Cisco Secure Access Control Server 3.1

  • Cisco Secure Access Control Server 3.1.1

  • Cisco Secure Access Control Server 3.2

  • Cisco Secure Access Control Server 3.2%281%29

  • Cisco Secure Access Control Server 3.2%281.20%29

  • Cisco Secure Access Control Server 3.2%282%29

  • Cisco Secure Access Control Server 3.2%283%29

  • Cisco Secure Access Control Server 3.2.1

  • Cisco Secure Access Control Server 3.2.2

  • Cisco Secure Access Control Server 3.3

  • Cisco Secure Access Control Server 3.3%281%29

  • Cisco Secure Access Control Server 3.3.1

  • Cisco Secure Access Control Server 3.3.2

  • Cisco Secure Access Control Server Solution Engine 3.3

  • Cisco Secure Access Control Server Solution Engine 3.3.1

  • Cisco Secure Access Control Server Solution Engine 3.3.2

  • Cisco Support Tools

  • Cisco Web Collaboration Option

  • Ciscoworks Access Control List Manager 1.5

  • Ciscoworks Access Control List Manager 1.6

  • Ciscoworks Common Management Foundation 2.0

  • Ciscoworks Common Management Foundation 2.1

  • Ciscoworks Common Management Foundation 2.2

  • Ciscoworks Common Services 2.2

  • Ciscoworks Lms 1.3

  • Ciscoworks Vpn Security Management Solution

  • Ciscoworks Windows

  • F5 Big-ip 4.0

  • F5 Big-ip 4.2

  • F5 Big-ip 4.3

  • F5 Big-ip 4.4

  • F5 Big-ip 4.5

  • F5 Big-ip 4.5.10

  • F5 Big-ip 4.5.11

  • F5 Big-ip 4.5.12

  • F5 Big-ip 4.5.6

  • F5 Big-ip 4.5.9

  • F5 Big-ip 4.6

  • F5 Big-ip 4.6.2

  • F5 Big-ip 9.0

  • F5 Big-ip 9.0.1

  • F5 Big-ip 9.0.2

  • F5 Big-ip 9.0.3

  • F5 Big-ip 9.0.4

  • F5 Big-ip 9.0.5

  • Hitachi Alaxala Ax

  • Nortel Business Communications Manager 1000

  • Nortel Business Communications Manager 200

  • Nortel Business Communications Manager 400

  • Nortel Callpilot 200i

  • Nortel Callpilot 201i

  • Nortel Callpilot 702t

  • Nortel Callpilot 703t

  • Nortel Contact Center


References

CERT-VN - VU#637934

SECUNIA - 15417

XF - tcp-ip-timestamp-dos(20635)

BID - 13676

CISCO - 20050518 Vulnerability in a Variant of the TCP Timestamps Option

SECUNIA - 15393

CONFIRM - http://support.avaya.com/elmodocs2/security/ASA-2006-032.htm

SECUNIA - 18662

SECUNIA - 18222

SCO - SCOSA-2005.64

FREEBSD - FreeBSD-SA-05:15


Last Updated: 27 May 2016 10:39:46