CVE-2008-4609


Severity : High
Published : 2008-10-20
Modified : 2013-10-10
Base Score : 7.1
Details : The TCP implementation in (1) Linux, (2) platforms based on BSD Unix, (3) Microsoft Windows, (4) Cisco products, and probably other operating systems allows remote attackers to cause a denial of service (connection queue exhaustion) via multiple vectors that manipulate information in the TCP state table, as demonstrated by sockstress.
Product/Version :  
Please see also:  
http://blog.robertlee.name/2008/10/more-detailed-response-to-gordons-post.html  
 
and  
 
http://www.curbrisk.com/security-blog/robert-e-lee-discusses-tcp-denial-service-vulnerability-sc-magazine.html  
 
 
 
 
 
 
 
 
 
 
 
 
Carrier Grade CGE 4.0  
 
 
 


CVE Vulnerabilities List CVE-2008
CVE-2008-7256CVE-2008-7068CVE-2008-6218CVE-2008-5713
CVE-2008-5300CVE-2008-5286CVE-2008-5161CVE-2008-5079
CVE-2008-5031CVE-2008-5029CVE-2008-4989CVE-2008-4864
CVE-2008-4685CVE-2008-4609CVE-2008-4554CVE-2008-4316
CVE-2008-4309CVE-2008-4307CVE-2008-4226CVE-2008-4225
CVE-2008-4210CVE-2008-4109CVE-2008-4101CVE-2008-3934
CVE-2008-3933CVE-2008-3932CVE-2008-3915CVE-2008-3527
CVE-2008-3526CVE-2008-3522CVE-2008-3521CVE-2008-3520
CVE-2008-3294CVE-2008-3276CVE-2008-3275CVE-2008-3272
CVE-2008-3146CVE-2008-3142CVE-2008-3141CVE-2008-3140
CVE-2008-3139CVE-2008-3138CVE-2008-3137CVE-2008-3075
CVE-2008-2952CVE-2008-2935CVE-2008-2812CVE-2008-2729
CVE-2008-2712CVE-2008-2364CVE-2008-2292CVE-2008-2108
CVE-2008-2107CVE-2008-2051CVE-2008-1927CVE-2008-1808
CVE-2008-1807CVE-2008-1806CVE-2008-1722CVE-2008-1678
CVE-2008-1673CVE-2008-1657CVE-2008-1483CVE-2008-1372
CVE-2008-1367CVE-2008-0658CVE-2008-0598CVE-2008-0596
CVE-2008-0122CVE-2008-0007CVE-2008-0005