CVE-2014-7250CVE-2014-7250

Affected configuration(s):

cpe:/o:bsd:bsd:4.3
cpe:/o:freebsd:freebsd:5.4
cpe:/o:netbsd:netbsd:2.0
cpe:/o:openbsd:openbsd:3.6

Date published: 2014-12-11T22:03:47.817-05:00

Date last modified: 2014-12-12T15:28:21.973-05:00

CVSS Score: 5.0

Principal attack vector: NETWORK

Complexity:  LOW

Reference URL: http://jvn.jp/en/jp/JVN07930208/index.html

Summary: The TCP stack in 4.3BSD Net/2, as used in FreeBSD 5.4, NetBSD possibly 2.0, and OpenBSD possibly 3.6, does not properly implement the session timer, which allows remote attackers to cause a denial of service (resource consumption) via crafted packets.

CategoriesUncategorised

Leave a Reply

Your email address will not be published. Required fields are marked *