Vulnerability Description
The TCP implementation in (1) Linux, (2) platforms based on BSD Unix, (3) Microsoft Windows, (4) Cisco products, and probably other operating systems allows remote attackers to cause a denial of service (connection queue exhaustion) via multiple vectors that manipulate information in the TCP state table, as demonstrated by sockstress.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Bsd | Bsd | - |
| Bsdi | Bsd Os | - |
| Cisco | Ios | - |
| Dragonflybsd | Dragonflybsd | - |
| Freebsd | Freebsd | - |
| Linux | Linux Kernel | - |
| Midnightbsd | Midnightbsd | - |
| Netbsd | Netbsd | - |
| Openbsd | Openbsd | - |
| Trustedbsd | Trustedbsd | - |
| Microsoft | Windows 2000 | - |
| Microsoft | Windows Server 2003 | - |
| Microsoft | Windows Server 2008 | - |
| Microsoft | Windows Vista | - |
| Microsoft | Windows Xp | - |
| Cisco | Catalyst Blade Switch 3020 Firmware | < 12.2\(50\) |
| Cisco | Catalyst Blade Switch 3020 | - |
| Cisco | Catalyst Blade Switch 3120 Firmware | < 12.2\(50\) |
| Cisco | Catalyst Blade Switch 3120 | - |
| Cisco | Catalyst Blade Switch 3120X Firmware | < 12.2\(50\) |
Related Weaknesses (CWE)
References
- http://blog.robertlee.name/2008/10/conjecture-speculation.htmlBroken Link
- http://insecure.org/stf/tcp-dos-attack-explained.htmlBroken Link
- http://lists.immunitysec.com/pipermail/dailydave/2008-October/005360.htmlBroken Link
- http://marc.info/?l=bugtraq&m=125856010926699&w=2Third Party Advisory
- http://searchsecurity.techtarget.com.au/articles/27154-TCP-is-fundamentally-borkBroken Link
- http://www.cisco.com/en/US/products/products_security_advisory09186a0080af511d.sBroken Link
- http://www.cisco.com/en/US/products/products_security_response09186a0080a15120.hBroken Link
- http://www.cpni.gov.uk/Docs/tn-03-09-security-assessment-TCP.pdfBroken Link
- http://www.mandriva.com/security/advisories?name=MDVSA-2013:150Broken Link
- http://www.oracle.com/technetwork/topics/security/cpujul2012-392727.htmlThird Party Advisory
- http://www.outpost24.com/news/news-2008-10-02.htmlBroken Link
- http://www.us-cert.gov/cas/techalerts/TA09-251A.htmlThird Party AdvisoryUS Government Resource
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2009/ms09-04PatchThird Party Advisory
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Broken Link
- https://www.cert.fi/haavoittuvuudet/2008/tcp-vulnerabilities.htmlBroken Link
FAQ
What is CVE-2008-4609?
CVE-2008-4609 is a vulnerability with a CVSS score of 7.1 (HIGH). The TCP implementation in (1) Linux, (2) platforms based on BSD Unix, (3) Microsoft Windows, (4) Cisco products, and probably other operating systems allows remote attackers to cause a denial of servi...
How severe is CVE-2008-4609?
CVE-2008-4609 has been rated HIGH with a CVSS base score of 7.1/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2008-4609?
Check the references section above for vendor advisories and patch information. Affected products include: Bsd Bsd, Bsdi Bsd Os, Cisco Ios, Dragonflybsd Dragonflybsd, Freebsd Freebsd.