Date published: 2014-12-11T22:03:47.817-05:00
Date last modified: 2014-12-12T15:28:21.973-05:00
CVSS Score: 5.0
Principal attack vector: NETWORK
Reference URL: http://jvn.jp/en/jp/JVN07930208/index.html
Summary: The TCP stack in 4.3BSD Net/2, as used in FreeBSD 5.4, NetBSD possibly 2.0, and OpenBSD possibly 3.6, does not properly implement the session timer, which allows remote attackers to cause a denial of service (resource consumption) via crafted packets.