CVE-2008-4609

The TCP implementation in (1) Linux, (2) platforms based on BSD Unix, (3) Microsoft Windows, (4) Cisco products, and probably other operating systems allows remote attackers to cause a denial of service (connection queue exhaustion) via multiple vectors that manipulate information in the TCP state table, as demonstrated by sockstress.

Severity	HIGH
CVSS	7.1
CWE	CWE-16
KEV
Published	17 years ago
Modified	3 weeks ago

Related Products

Product	Advisory	Evidence
Cisco PIX/ASA	cisco-sa-20090908-tcp24	Cisco OpenVuln
Cisco NX-OS Software	cisco-sa-20090908-tcp24	Cisco OpenVuln
Cisco IOS XE Software	cisco-sa-20090908-tcp24	Cisco OpenVuln
Cisco IOS	cisco-sa-20090908-tcp24	Cisco OpenVuln
Cisco Catalyst Operating System (CatOS) Software	cisco-sa-20090908-tcp24	Cisco OpenVuln
Cisco Catalyst 9600 Series Switches	cisco-sa-20090908-tcp24	Cisco OpenVuln · software-dependent
Cisco Catalyst 9500 Series Switches	cisco-sa-20090908-tcp24	Cisco OpenVuln · software-dependent
Cisco Catalyst 9400 Series Switches	cisco-sa-20090908-tcp24	Cisco OpenVuln · software-dependent
Cisco Catalyst 9300 Series Switches	cisco-sa-20090908-tcp24	Cisco OpenVuln · software-dependent
Cisco Catalyst 9200 Series Switches	cisco-sa-20090908-tcp24	Cisco OpenVuln · software-dependent