Vulnerabilities > CVE-2005-3774 - Denial Of Service vulnerability in Cisco PIX 6.3/7.0

047910
CVSS 5.0 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
PARTIAL
network
low complexity
cisco
exploit available
NVD
Published: 2005-11-23
Updated: 2018-10-19

Summary

Cisco PIX 6.3 and 7.0 allows remote attackers to cause a denial of service (blocked new connections) via spoofed TCP packets that cause the PIX to create embryonic connections that that would not produce a valid connection with the end system, including (1) SYN packets with invalid checksums, which do not result in a RST; or, from an external interface, (2) one byte of "meaningless data," or (3) a TTL that is one less than needed to reach the internal destination.

Vulnerable Configurations

Part Description Count
Hardware
Cisco
2

Exploit-Db

  • descriptionCisco PIX TCP SYN Packet Denial Of Service Vulnerability. CVE-2005-3774. Dos exploit for hardware platform
    idEDB-ID:26548
    last seen2016-02-03
    modified2005-11-22
    published2005-11-22
    reporterJanis Vizulis
    sourcehttps://www.exploit-db.com/download/26548/
    titleCisco PIX TCP SYN Packet Denial of Service Vulnerability
  • descriptionCisco PIX Spoofed TCP SYN Packets Remote Denial of Service Exploit. CVE-2005-3774. Dos exploit for hardware platform
    idEDB-ID:1338
    last seen2016-01-31
    modified2005-11-23
    published2005-11-23
    reporterJanis Vizulis
    sourcehttps://www.exploit-db.com/download/1338/
    titleCisco PIX Spoofed TCP SYN Packets Remote Denial of Service Exploit

References