BSD Weak初始序列号漏洞

漏洞信息详情

BSD Weak初始序列号漏洞

• CNNVD编号：CNNVD-200012-185
• 危害等级： 高危
  
  
• CVE编号：
  CVE-2000-0916
  
• 漏洞类型：
  
  
  设计错误
  
• 发布时间：
  
  2000-12-19
  
• 威胁类型：
  
  
  远程
  
• 更新时间：
  
  2005-10-20
  
• 厂        商：
  
  freebsd
• 漏洞来源：
  First published in…

FreeBSD 4.1.1及其早期版本以及可能其他基于BSD的Oses使用不充足随机数生成器产生初始TCP序列号(ISN)，远程攻击者伪造TCP连接。

FreeBSD has corrected the problem and released patches for 4.x and 3.x versions.
FreeBSD FreeBSD 3.x

• FreeBSD 3.x tcp-iss-3.x.patch# cd /usr/src/sys/netinet# patch -p < /path/to/patch_or_advisory[ Recompile your kernel as described in
  http://www.freebsd.org/handbook/kernelconfig.html and reboot the system ]
  ftp://ftp.freebsd.org/pub/FreeBSD/CERT/patches/SA-00:52/tcp-iss-3.x.pa
  tch

FreeBSD FreeBSD 4.0

• FreeBSD 4.x tcp-iss.patch# cd /usr/src/sys/netinet# patch -p < /path/to/patch_or_advisory[ Recompile your kernel as described in
  http://www.freebsd.org/handbook/kernelconfig.html and reboot the system ]
  ftp://ftp.freebsd.org/pub/FreeBSD/CERT/patches/SA-00:52/tcp-iss.patch

FreeBSD FreeBSD 4.1

• FreeBSD 4.x tcp-iss.patch# cd /usr/src/sys/netinet# patch -p < /path/to/patch_or_advisory[ Recompile your kernel as described in
  http://www.freebsd.org/handbook/kernelconfig.html and reboot the system ]
  ftp://ftp.freebsd.org/pub/FreeBSD/CERT/patches/SA-00:52/tcp-iss.patch

FreeBSD FreeBSD 4.1.1

• FreeBSD 4.x tcp-iss.patch# cd /usr/src/sys/netinet# patch -p < /path/to/patch_or_advisory[ Recompile your kernel as described in
  http://www.freebsd.org/handbook/kernelconfig.html and reboot the system ]
  ftp://ftp.freebsd.org/pub/FreeBSD/CERT/patches/SA-00:52/tcp-iss.patch

来源: BID
名称: 1766
链接:http://www.securityfocus.com/bid/1766

来源: FREEBSD
名称: FreeBSD-SA-00:52
链接:ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-00:52.tcp-iss.asc