| Vulnerability Name: | CVE-2005-3675 (CCN-23055) | ||||||||
| Assigned: | 2005-11-10 | ||||||||
| Published: | 2005-11-10 | ||||||||
| Updated: | 2017-07-11 | ||||||||
| Summary: | The Transmission Control Protocol (TCP) allows remote attackers to cause a denial of service (bandwidth consumption) by sending ACK messages for packets that have not yet been received (optimistic ACKs), which can cause the sender to increase its transmission rate until it fills available bandwidth. | ||||||||
| CVSS v3 Severity: | 7.5 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H)
| ||||||||
| CVSS v2 Severity: | 7.8 High (CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C)
| ||||||||
| Vulnerability Type: | CWE-Other | ||||||||
| Vulnerability Consequences: | Denial of Service | ||||||||
| References: | Source: MITRE Type: CNA CVE-2005-3675 Source: MISC Type: UNKNOWN http://www.cs.umd.edu/~capveg/optack/optack-extended.pdf Source: CCN Type: US-CERT VU#102014 Optimistic TCP acknowledgements can cause denial of service Source: CERT-VN Type: Third Party Advisory, US Government Resource VU#102014 Source: CCN Type: OSVDB ID: 22826 TCP Optimistic ACK Remote DoS Source: CCN Type: BID-15468 Multiple Vendor TCP Acknowledgements Remote Denial Of Service Vulnerability Source: BID Type: UNKNOWN 15468 Source: XF Type: UNKNOWN tcp-congestion-control-dos(23055) Source: XF Type: UNKNOWN tcp-congestion-control-dos(23055) | ||||||||
| Vulnerable Configuration: | Configuration 1: Configuration CCN 1:  Denotes that component is vulnerable | ||||||||
| BACK | |||||||||