Sign-up

ID

VAR-200403-0072


CVE

CVE-2004-0171


TITLE

FreeBSD fails to limit number of TCP segments held in reassembly queue

Trust: 0.8

sources: CERT/CC: VU#395670

DESCRIPTION

FreeBSD 5.1 and earlier, and Mac OS X before 10.3.4, allows remote attackers to cause a denial of service (resource exhaustion of memory buffers and system crash) via a large number of out-of-sequence TCP packets, which prevents the operating system from creating new connections. FreeBSD fails to limit the number of TCP segments held in a reassembly queue which could allow an attacker to exhaust all available memory buffers (mbufs) on the destination system resulting in a denial-of-service condition. A problem in the handling of out-of-sequence packets has been identified in BSD variants such as FreeBSD and OpenBSD. Because of this, it may be possible for remote attackers to deny service to legitimate users of vulnerable systems

Trust: 1.89

sources: NVD: CVE-2004-0171 // CERT/CC: VU#395670 // BID: 9792

AFFECTED PRODUCTS

vendor:freebsdmodel:freebsdscope:eqversion:4.7

Trust: 1.9

vendor:freebsdmodel:freebsdscope:eqversion:4.6.2

Trust: 1.9

vendor:openbsdmodel:openbsdscope:eqversion:3.4

Trust: 1.3

vendor:openbsdmodel:openbsdscope:eqversion:3.3

Trust: 1.3

vendor:freebsdmodel:freebsdscope:eqversion:5.2

Trust: 1.3

vendor:freebsdmodel:freebsdscope:eqversion:5.1

Trust: 1.3

vendor:freebsdmodel:freebsdscope:eqversion:5.0

Trust: 1.3

vendor:freebsdmodel:freebsdscope:eqversion:4.9

Trust: 1.3

vendor:freebsdmodel:freebsdscope:eqversion:4.8

Trust: 1.3

vendor:freebsdmodel: - scope: - version: -

Trust: 0.8

vendor:sgimodel:irixscope:eqversion:6.5.25

Trust: 0.3

vendor:sgimodel:irixscope:eqversion:6.5.24

Trust: 0.3

vendor:sgimodel:irixscope:eqversion:6.5.23

Trust: 0.3

vendor:sgimodel:irixscope:eqversion:6.5.22

Trust: 0.3

vendor:f5model:big-ipscope:eqversion:4.5.11

Trust: 0.3

vendor:f5model:big-ipscope:eqversion:4.5.10

Trust: 0.3

vendor:f5model:big-ipscope:eqversion:4.5.9

Trust: 0.3

vendor:f5model:big-ipscope:eqversion:4.5.6

Trust: 0.3

vendor:f5model:big-ipscope:eqversion:4.5

Trust: 0.3

vendor:f5model:big-ipscope:eqversion:4.4

Trust: 0.3

vendor:f5model:big-ipscope:eqversion:4.3

Trust: 0.3

vendor:f5model:big-ipscope:eqversion:4.2

Trust: 0.3

vendor:f5model:big-ipscope:eqversion:2.1

Trust: 0.3

vendor:f5model:big-ipscope:eqversion:2.0

Trust: 0.3

vendor:f5model:3-dnsscope:eqversion:4.6.2

Trust: 0.3

vendor:f5model:3-dnsscope:eqversion:4.6

Trust: 0.3

vendor:f5model:3-dnsscope:eqversion:4.5

Trust: 0.3

vendor:f5model:3-dnsscope:eqversion:4.4

Trust: 0.3

vendor:f5model:3-dnsscope:eqversion:4.3

Trust: 0.3

vendor:f5model:3-dnsscope:eqversion:4.2

Trust: 0.3

vendor:borderwaremodel:firewall serverscope:eqversion:7.0

Trust: 0.3

sources: CERT/CC: VU#395670 // BID: 9792 // NVD: CVE-2004-0171 // CNNVD: CNNVD-200403-072

CVSS

SEVERITY

CVSSV2

CVSSV3

NVD: CVE-2004-0171
value: MEDIUM

Trust: 1.0

CARNEGIE MELLON: VU#395670
value: 6.83

Trust: 0.8

CNNVD: CNNVD-200403-072
value: MEDIUM

Trust: 0.6

NVD:
severity: MEDIUM
baseScore: 5.0
vectorString: AV:N/AC:L/AU:N/C:N/I:N/A:P
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: PARTIAL
exploitabilityScore: 10.0
impactScore: 2.9
acInsufInfo: FALSE
obtainAllPrivilege: FALSE
obtainUserPrivilege: FALSE
obtainOtherPrivilege: FALSE
userInteractionRequired: FALSE
version: 2.0

Trust: 1.0

sources: CERT/CC: VU#395670 // NVD: CVE-2004-0171 // CNNVD: CNNVD-200403-072

PROBLEMTYPE DATA

problemtype:NVD-CWE-Other

Trust: 1.0

sources: NVD: CVE-2004-0171

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-200403-072

TYPE

other

Trust: 0.6

sources: CNNVD: CNNVD-200403-072

CONFIGURATIONS

sources:
            
            
            NVD: CVE-2004-0171

EXTERNAL IDS
db:CERT/CCid:VU#395670
Trust: 2.4
db:NVDid:CVE-2004-0171
Trust: 1.9
db:BIDid:9792
Trust: 1.9
db:OSVDBid:4124
Trust: 1.6
db:APPLEid:APPLE-SA-2004-05-28
Trust: 0.6
db:IDEFENSEid:20040302 FREEBSD MEMORY BUFFER EXHAUSTION DENIAL OF SERVICE VULNERABILITY
Trust: 0.6
db:FREEBSDid:FREEBSD-SA-04:04
Trust: 0.6
db:XFid:15369
Trust: 0.6
db:CNNVDid:CNNVD-200403-072
Trust: 0.6
sources:
            
            
            CERT/CC: VU#395670 // 
            
            
            
            BID: 9792 // 
            
            
            
            NVD: CVE-2004-0171 // 
            
            
            
            CNNVD: CNNVD-200403-072

REFERENCES
url:http://www.idefense.com/application/poi/display?id=78&type=vulnerabilities
Trust: 2.7
url:ftp://ftp.freebsd.org/pub/freebsd/cert/advisories/freebsd-sa-04:04.tcp.asc
Trust: 2.4
url:http://lists.seifried.org/pipermail/security/2004-may/003743.html
Trust: 1.6
url:http://www.kb.cert.org/vuls/id/395670
Trust: 1.6
url:http://www.osvdb.org/4124
Trust: 1.6
url:http://www.securityfocus.com/bid/9792
Trust: 1.6
url:https://exchange.xforce.ibmcloud.com/vulnerabilities/15369
Trust: 1.0
url:https://ialert.idefense.com/kodetails.jhtml?irid=207650
Trust: 0.8
url:http://www.ietf.org/rfc/rfc793.txt
Trust: 0.8
url:http://xforce.iss.net/xforce/xfdb/15369
Trust: 0.6
url:http://www.borderware.com/products/firewall.php
Trust: 0.3
url:http://www.freebsd.org/
Trust: 0.3
url:http://docs.freebsd.org/cgi/getmsg.cgi?fetch=97407+0+/usr/local/www/db/text/2004/freebsd-net/20040222.freebsd-net
Trust: 0.3
url:http://www.openbsd.org
Trust: 0.3
url:http://www.borderware.com/
Trust: 0.3
sources:
            
            
            CERT/CC: VU#395670 // 
            
            
            
            BID: 9792 // 
            
            
            
            NVD: CVE-2004-0171 // 
            
            
            
            CNNVD: CNNVD-200403-072

CREDITS
Alexander Cuttergo
Trust: 0.6
sources:
            
            
            CNNVD: CNNVD-200403-072

SOURCES
db:CERT/CCid:VU#395670
db:BIDid:9792
db:NVDid:CVE-2004-0171
db:CNNVDid:CNNVD-200403-072

LAST UPDATE DATE
2023-12-18T12:13:46.330000+00:00

SOURCES UPDATE DATE
db:CERT/CCid:VU#395670date:2004-03-04T00:00:00
db:BIDid:9792date:2009-07-12T03:06:00
db:NVDid:CVE-2004-0171date:2017-10-10T01:30:18.673
db:CNNVDid:CNNVD-200403-072date:2005-05-13T00:00:00

SOURCES RELEASE DATE
db:CERT/CCid:VU#395670date:2004-03-04T00:00:00
db:BIDid:9792date:2004-03-02T00:00:00
db:NVDid:CVE-2004-0171date:2004-03-15T05:00:00
db:CNNVDid:CNNVD-200403-072date:2004-03-15T00:00:00