Cisco PIX 6.3 and 7.0 allows remote attackers to cause a denial of service (blocked new connections) via spoofed TCP packets that cause the PIX to create embryonic connections that that would not produce a valid connection with the end system, including (1) SYN packets with invalid checksums, which do not result in a RST; or, from an external interface, (2) one byte of "meaningless data," or (3) a TTL that is one less than needed to reach the internal destination.
References
Configurations
Configuration 1 (hide)
|
Information
Published : 2005-11-22 16:03
Updated : 2018-10-19 08:39
NVD link : CVE-2005-3774
Mitre link : CVE-2005-3774
JSON object : View
CWE
Products Affected
cisco
- pix