Vulnerability Description
Multiple TCP implementations with Protection Against Wrapped Sequence Numbers (PAWS) with the timestamps option enabled allow remote attackers to cause a denial of service (connection loss) via a spoofed packet with a large timer value, which causes the host to discard later packets because they appear to be too old.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Cisco | Agent Desktop | All versions |
| Cisco | E-Mail Manager | All versions |
| Cisco | Emergency Responder | 1.1 |
| Cisco | Intelligent Contact Manager | 5.0 |
| Cisco | Interactive Voice Response | All versions |
| Cisco | Ip Contact Center Enterprise | All versions |
| Cisco | Ip Contact Center Express | All versions |
| Cisco | Meetingplace | All versions |
| Cisco | Personal Assistant | 1.3\(1\) |
| Cisco | Remote Monitoring Suite Option | All versions |
| Cisco | Secure Access Control Server | 2.0 |
| Cisco | Support Tools | All versions |
| Cisco | Web Collaboration Option | All versions |
| Hitachi | Alaxala | ax |
| Cisco | Call Manager | 1.0 |
| Cisco | Unity Server | 2.0 |
| Cisco | Mgx 8230 | 1.2.10 |
| Cisco | Mgx 8250 | 1.2.10 |
| Cisco | Ciscoworks Access Control List Manager | 1.5 |
| Cisco | Ciscoworks Common Management Foundation | 2.0 |
References
- ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-05:15.tcp.asc
- ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2005.64/SCOSA-2005.64.txt
- http://secunia.com/advisories/15393
- http://secunia.com/advisories/15417/Patch
- http://secunia.com/advisories/18222
- http://secunia.com/advisories/18662
- http://support.avaya.com/elmodocs2/security/ASA-2006-032.htm
- http://www.cisco.com/warp/public/707/cisco-sn-20050518-tcpts.shtmlVendor Advisory
- http://www.kb.cert.org/vuls/id/637934Third Party AdvisoryUS Government Resource
- http://www.securityfocus.com/bid/13676Exploit
- https://exchange.xforce.ibmcloud.com/vulnerabilities/20635
- ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-05:15.tcp.asc
- ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2005.64/SCOSA-2005.64.txt
- http://secunia.com/advisories/15393
- http://secunia.com/advisories/15417/Patch
FAQ
What is CVE-2005-0356?
CVE-2005-0356 is a vulnerability with a CVSS score of 5.0 (MEDIUM). Multiple TCP implementations with Protection Against Wrapped Sequence Numbers (PAWS) with the timestamps option enabled allow remote attackers to cause a denial of service (connection loss) via a spoo...
How severe is CVE-2005-0356?
CVE-2005-0356 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2005-0356?
Check the references section above for vendor advisories and patch information. Affected products include: Cisco Agent Desktop, Cisco E-Mail Manager, Cisco Emergency Responder, Cisco Intelligent Contact Manager, Cisco Interactive Voice Response.