CVE-2004-2095

Honeyd before 0.8 replies to TCP packets with the SYN and RST flags set, which allows remote attackers to identify IP addresses that are being simulated by Honeyd.

CVSS v2.0 5.0 MEDIUM

5.0^/10

CVSS v2.0 : MEDIUM

Vector : AV:N/AC:L/Au:N/C:P/I:N/A:N

Exploitability : 10.0 / Impact : 2.9

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact NONE

Availability Impact NONE

References

Link	Resource
http://www.securityfocus.com/bid/9464
http://www.osvdb.org/3690
http://www.securitytracker.com/id?1008818
http://secunia.com/advisories/10695
http://secunia.com/advisories/10694
http://marc.info/?l=bugtraq&m=107473095118505&w=2
http://marc.info/?l=bugtraq&m=107471181426047&w=2
https://exchange.xforce.ibmcloud.com/vulnerabilities/14905

Advertisement

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:niels_provos:honeyd:0.6:::::::*
	cpe:2.3:a:niels_provos:honeyd:0.6a:::::::*
	cpe:2.3:a:niels_provos:honeyd:0.7:::::::*
	cpe:2.3:a:niels_provos:honeyd:0.5:::::::*
	cpe:2.3:a:niels_provos:honeyd:0.7a:::::::*

Information

Published : 2004-12-30 21:00

Updated : 2017-07-10 18:31

NVD link : CVE-2004-2095

Mitre link : CVE-2004-2095

JSON object : View

CWE

NVD-CWE-Other

Advertisement

Products Affected

niels_provos

honeyd

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "http://www.securityfocus.com/bid/9464", "name": "9464", "tags": [], "refsource": "BID"}, {"url": "http://www.osvdb.org/3690", "name": "3690", "tags": [], "refsource": "OSVDB"}, {"url": "http://www.securitytracker.com/id?1008818", "name": "1008818", "tags": [], "refsource": "SECTRACK"}, {"url": "http://secunia.com/advisories/10695", "name": "10695", "tags": [], "refsource": "SECUNIA"}, {"url": "http://secunia.com/advisories/10694", "name": "10694", "tags": [], "refsource": "SECUNIA"}, {"url": "http://marc.info/?l=bugtraq&m=107473095118505&w=2", "name": "20040121 [ GLSA 200401-02 ] Honeyd remote detection vulnerability via a probe packet", "tags": [], "refsource": "BUGTRAQ"}, {"url": "http://marc.info/?l=bugtraq&m=107471181426047&w=2", "name": "20040121 Honeyd Security Advisory 2004-001: Remote Detection Via Simple Probe Packet", "tags": [], "refsource": "BUGTRAQ"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/14905", "name": "honeyd-nmap-information-disclosure(14905)", "tags": [], "refsource": "XF"}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "Honeyd before 0.8 replies to TCP packets with the SYN and RST flags set, which allows remote attackers to identify IP addresses that are being simulated by Honeyd."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2004-2095", "ASSIGNER": "cve@mitre.org"}}, "impact": {"baseMetricV2": {"cvssV2": {"version": "2.0", "baseScore": 5.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "NONE", "confidentialityImpact": "PARTIAL"}, "severity": "MEDIUM", "impactScore": 2.9, "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}}, "publishedDate": "2004-12-31T05:00Z", "configurations": {"nodes": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:niels_provos:honeyd:0.6:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:niels_provos:honeyd:0.6a:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:niels_provos:honeyd:0.7:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:niels_provos:honeyd:0.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:niels_provos:honeyd:0.7a:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}], "CVE_data_version": "4.0"}, "lastModifiedDate": "2017-07-11T01:31Z"}