Moderate

CVE-2004-0171 - Unspecified vulnerability in multiple products

Publication: 2004-03-15
Summary

FreeBSD 5.1 and earlier, and Mac OS X before 10.3.4, allows remote attackers to cause a denial of service (resource exhaustion of memory buffers and system crash) via a large number of out-of-sequence TCP packets, which prevents the operating system from creating new connections.

Risk level (CVSS 5)

Moderate

5.0

Access Vector

  • Network
  • Adjacent Network
  • Local

Access Complexity

  • Low
  • Medium
  • High

Authentication

  • None
  • Single
  • Multiple

Confident. Impact

  • Complete
  • Partial
  • None

Integrity Impact

  • Complete
  • Partial
  • None

Affected Products

  • Openbsd Openbsd 3.3
  • Openbsd Openbsd 3.4
  • Freebsd Freebsd 4.6.2
  • Freebsd Freebsd 4.7
  • Freebsd Freebsd 4.8
  • Freebsd Freebsd 4.9
  • Freebsd Freebsd 5.0
  • Freebsd Freebsd 5.1
  • Freebsd Freebsd 5.2