This site is deprecated. Please
CLICK HERE for latest updates
Short Name |
DOS:MULTIVENDOR-TCP-TIMESTAMP
|
Severity |
Major
|
Recommended |
No
|
Recommended Action |
Drop
|
Category |
DOS
|
Keywords |
Multi Vendor TCP Timestamp Option Denial of Service
|
Release Date |
2012/11/26
|
Update Number |
2205
|
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+
|
DOS: Multi Vendor TCP Timestamp Option Denial of Service
This signature detects attempts to exploit a known vulnerability against TCP implementations of multiple vendors. A successful attack can result in a denial-of-service condition.
Extended Description
A denial-of-service vulnerability exists for the TCP RFC 1323. The issue resides in the Protection Against Wrapped Sequence Numbers (PAWS) technique that was included to increase overall TCP performance.
When TCP 'timestamps' are enabled, both hosts at the endpoints of a TCP connection employ internal clocks to mark TCP headers with a 'timestamp' value.
When TCP PAWS is configured to employ timestamp values, this functionality exposes TCP PAWS implementations to a denial-of-service vulnerability.
The issue manifests if an attacker transmits a sufficient TCP PAWS packet to a vulnerable computer. The attacker sets a large value as the packet timestamp. When the target computer processes this packet, the internal timer is updated to the large value that the attacker supplied. This causes all other valid packets that are received subsequent to an attack to be dropped, because they are deemed to be too old or invalid. This type of attack will effectively deny service for a target connection.
Affected Products
- Alaxala_networks ax5400s Null
- Alaxala_networks ax7800r Null
- Alaxala_networks ax7800s Null
- Avaya cvlan
- Avaya interactive_response 1.2.1
- Avaya interactive_response 1.3.0
- Avaya interactive_response
- Avaya intuity AUDIX
- Avaya intuity_audix_r5
- Blue_coat_systems cacheos Null
- Blue_coat_systems sgos
- Cisco agent_desktop
- Cisco ap1200
- Cisco ap350
- Cisco call_manager 1.0.0
- Cisco call_manager 2.0.0
- Cisco call_manager 3.0.0
- Cisco call_manager 3.1.0
- Cisco call_manager 3.1.0 (2)
- Cisco call_manager 3.1.0 (3a)
- Cisco call_manager 3.2.0
- Cisco call_manager 3.3.0
- Cisco call_manager 3.3.0 (3)
- Cisco call_manager 4.0.0
- Cisco call_manager
- Cisco ciscoworks
- Cisco ciscoworks_1105_hosting_solution_engine
- Cisco ciscoworks_1105_wireless_lan_solution_engine
- Cisco ciscoworks_access_control_list_manager 1.5.0
- Cisco ciscoworks_access_control_list_manager 1.6.0
- Cisco ciscoworks_cd1 1st Edition
- Cisco ciscoworks_cd1 2nd Edition
- Cisco ciscoworks_cd1 3rd Edition
- Cisco ciscoworks_cd1 4th Edition
- Cisco ciscoworks_cd1 5th Edition
- Cisco ciscoworks_common_management_foundation 2.0.0
- Cisco ciscoworks_common_management_foundation 2.1.0
- Cisco ciscoworks_common_management_foundation 2.2.0
- Cisco ciscoworks_common_services 2.2.0
- Cisco ciscoworks_lms 1.3.0
- Cisco ciscoworks_vpn/security_management_solution
- Cisco ciscoworks_windows
- Cisco ciscoworks_windows
- Cisco ciscoworks_windows/wug
- Cisco conference_connection 1.1.0 (1)
- Cisco conference_connection 1.2.0
- Cisco conference_connection
- Cisco css11000_content_services_switch
- Cisco css11050_content_services_switch
- Cisco css11150_content_services_switch
- Cisco css11500_content_services_switch 7.10.0 (05.07)S
- Cisco css11500_content_services_switch 7.20.0 (03.09)S
- Cisco css11500_content_services_switch 7.20.0 (03.10)S
- Cisco css11500_content_services_switch 7.30.0 (00.08)S
- Cisco css11500_content_services_switch 7.30.0 (00.09)S
- Cisco css11500_content_services_switch
- Cisco css11501_content_services_switch
- Cisco css11503_content_services_switch
- Cisco css11506_content_services_switch
- Cisco css11800_content_services_switch
- Cisco e-mail_manager
- Cisco emergency_responder 1.1.0
- Cisco emergency_responder
- Cisco intelligent_contact_manager 5.0.0
- Cisco intelligent_contact_manager
- Cisco interactive_voice_response
- Cisco ip_contact_center_enterprise
- Cisco ip_contact_center_express
- Cisco meetingplace
- Cisco mgx
- Cisco mgx_8230 1.2.10
- Cisco mgx_8230 1.2.11
- Cisco mgx_8250 1.2.10
- Cisco mgx_8250 1.2.11
- Cisco personal_assistant 1.3.0 (1)
- Cisco personal_assistant 1.3.0 (2)
- Cisco personal_assistant 1.3.0 (3)
- Cisco personal_assistant 1.3.0 (4)
- Cisco personal_assistant 1.4.0 (1)
- Cisco personal_assistant 1.4.0 (2)
- Cisco personal_assistant
- Cisco remote_monitoring_suite_option
- Cisco secure_access_control_server 3.0.0
- Cisco secure_access_control_server 3.1.0
- Cisco secure_access_control_server 3.2.0
- Cisco secure_access_control_server 3.2.0 (1)
- Cisco secure_access_control_server 3.2.0 (1.20)
- Cisco secure_access_control_server 3.2.0 (2)
- Cisco secure_access_control_server 3.2.0 (3)
- Cisco secure_access_control_server 3.2.1
- Cisco secure_access_control_server 3.2.2
- Cisco secure_access_control_server 3.3.0
- Cisco secure_access_control_server 3.3.0 (1)
- Cisco secure_access_control_server 3.3.1
- Cisco secure_access_control_server 3.3.2
- Cisco secure_access_control_server
- Cisco secure_acs_for_unix 2.0.0
- Cisco secure_acs_for_unix 2.3.0
- Cisco secure_acs_for_unix 2.3.5 .1
- Cisco secure_acs_for_unix 2.3.6 .1
- Cisco secure_acs_for_windows_nt 2.1.0
- Cisco secure_acs_for_windows_nt 2.3.0
- Cisco secure_acs_for_windows_nt 2.4.0
- Cisco secure_acs_for_windows_nt 2.42.0
- Cisco secure_acs_for_windows_nt 2.5.0
- Cisco secure_acs_for_windows_nt 2.6.0
- Cisco secure_acs_for_windows_nt 2.6.2
- Cisco secure_acs_for_windows_nt 2.6.3
- Cisco secure_acs_for_windows_nt 2.6.4
- Cisco secure_acs_for_windows_nt 3.0.0
- Cisco secure_acs_for_windows_nt 3.0.0 .1
- Cisco secure_acs_for_windows_nt 3.0.3
- Cisco secure_acs_for_windows_nt 3.1.1
- Cisco secure_acs_for_windows_server 3.2.0
- Cisco secure_acs_solution_engine 3.3.0
- Cisco secure_acs_solution_engine 3.3.1
- Cisco secure_acs_solution_engine 3.3.2
- Cisco secure_acs_solution_engine
- Cisco sn5400_series_storage_routers
- Cisco sn_5420_storage_router 1.1.0 (2)
- Cisco sn_5420_storage_router 1.1.0 (3)
- Cisco sn_5420_storage_router 1.1.0 (4)
- Cisco sn_5420_storage_router 1.1.0 (5)
- Cisco sn_5420_storage_router 1.1.0 (7)
- Cisco sn_5420_storage_router 1.1.3
- Cisco sn_5428_storage_router SN5428-2-3.3.1-K9
- Cisco sn_5428_storage_router SN5428-2-3.3.2-K9
- Cisco sn_5428_storage_router SN5428-2.5.1-K9
- Cisco sn_5428_storage_router SN5428-3.2.1-K9
- Cisco sn_5428_storage_router SN5428-3.2.2-K9
- Cisco sn_5428_storage_router SN5428-3.3.1-K9
- Cisco sn_5428_storage_router SN5428-3.3.2-K9
- Cisco support_tools
- Cisco unity_server 2.0.0
- Cisco unity_server 2.1.0
- Cisco unity_server 2.2.0
- Cisco unity_server 2.3.0
- Cisco unity_server 2.4.0
- Cisco unity_server 2.46.0
- Cisco unity_server 3.0.0
- Cisco unity_server 3.1.0
- Cisco unity_server 3.2.0
- Cisco unity_server 3.3.0
- Cisco unity_server 4.0.0
- Cisco unity_server
- Cisco web_collaboration_option
- F5 bigip 4.0.0
- F5 bigip 4.2.0
- F5 bigip 4.3.0
- F5 bigip 4.4.0
- F5 bigip 4.5.0
- F5 bigip 4.5.10
- F5 bigip 4.5.11
- F5 bigip 4.5.12
- F5 bigip 4.5.6
- F5 bigip 4.5.9
- F5 bigip 4.6.0
- F5 bigip 4.6.2
- F5 bigip 9.0.0
- F5 bigip 9.0.1
- F5 bigip 9.0.2
- F5 bigip 9.0.3
- F5 bigip 9.0.4
- F5 bigip 9.0.5
- Freebsd freebsd 1.1.5 .1
- Freebsd freebsd 2.0.0
- Freebsd freebsd 2.0.5
- Freebsd freebsd 2.1.0
- Freebsd freebsd 2.1.0 X
- Freebsd freebsd 2.1.5
- Freebsd freebsd 2.1.6
- Freebsd freebsd 2.1.6 .1
- Freebsd freebsd 2.1.7 .1
- Freebsd freebsd 2.2.0
- Freebsd freebsd 2.2.0 X
- Freebsd freebsd 2.2.2
- Freebsd freebsd 2.2.3
- Freebsd freebsd 2.2.4
- Freebsd freebsd 2.2.5
- Freebsd freebsd 2.2.6
- Freebsd freebsd 2.2.8
- Freebsd freebsd 2.X
- Freebsd freebsd 3.0.0
- Freebsd freebsd 3.0.0 -RELENG
- Freebsd freebsd 3.1.0
- Freebsd freebsd 3.1.0 X
- Freebsd freebsd 3.2.0
- Freebsd freebsd 3.2.0 X
- Freebsd freebsd 3.3.0
- Freebsd freebsd 3.3.0 X
- Freebsd freebsd 3.4.0
- Freebsd freebsd 3.4.0 X
- Freebsd freebsd 3.5.0
- Freebsd freebsd 3.5.0 -STABLE
- Freebsd freebsd 3.5.0 -Stablepre050201
- Freebsd freebsd 3.5.0 -Stablepre122300
- Freebsd freebsd 3.5.0 X
- Freebsd freebsd 3.5.1
- Freebsd freebsd 3.5.1 -RELEASE
- Freebsd freebsd 3.5.1 -STABLE
- Freebsd freebsd 3.5.1 -Stablepre2001-07-20
- Freebsd freebsd 3.X
- Freebsd freebsd 4.0.0
- Freebsd freebsd 4.0.0 Alpha
- Freebsd freebsd 4.0.0 -RELENG
- Freebsd freebsd 4.0.0 .X
- Freebsd freebsd 4.1.0
- Freebsd freebsd 4.10.0
- Freebsd freebsd 4.10.0 -RELEASE
- Freebsd freebsd 4.10.0 -RELEASE-P8
- Freebsd freebsd 4.10.0 -RELENG
- Freebsd freebsd 4.10-PRERELEASE
- Freebsd freebsd 4.1.1
- Freebsd freebsd 4.11.0 -RELEASE-P3
- Freebsd freebsd 4.11.0 -RELENG
- Freebsd freebsd 4.11.0 -STABLE
- Freebsd freebsd 4.1.1 -RELEASE
- Freebsd freebsd 4.1.1 -STABLE
- Freebsd freebsd 4.2.0
- Freebsd freebsd 4.2.0 -RELEASE
- Freebsd freebsd 4.2.0 -STABLE
- Freebsd freebsd 4.2.0 -Stablepre050201
- Freebsd freebsd 4.2.0 -Stablepre122300
- Freebsd freebsd 4.3.0
- Freebsd freebsd 4.3.0 -RELEASE
- Freebsd freebsd 4.3.0 -RELEASE-P38
- Freebsd freebsd 4.3.0 -RELENG
- Freebsd freebsd 4.3.0 -STABLE
- Freebsd freebsd 4.4.0
- Freebsd freebsd 4.4.0 -RELEASE-P42
- Freebsd freebsd 4.4.0 -RELENG
- Freebsd freebsd 4.4.0 -STABLE
- Freebsd freebsd 4.5.0
- Freebsd freebsd 4.5.0 -RELEASE
- Freebsd freebsd 4.5.0 -RELEASE-P32
- Freebsd freebsd 4.5.0 -RELENG
- Freebsd freebsd 4.5.0 -STABLE
- Freebsd freebsd 4.5.0 -Stablepre2002-03-07
- Freebsd freebsd 4.6.0
- Freebsd freebsd 4.6.0 -RELEASE
- Freebsd freebsd 4.6.0 -RELEASE-P20
- Freebsd freebsd 4.6.0 -RELENG
- Freebsd freebsd 4.6.0 -STABLE
- Freebsd freebsd 4.6.2
- Freebsd freebsd 4.7.0
- Freebsd freebsd 4.7.0 -RELEASE
- Freebsd freebsd 4.7.0 -RELEASE-P17
- Freebsd freebsd 4.7.0 -RELENG
- Freebsd freebsd 4.7.0 -STABLE
- Freebsd freebsd 4.8.0
- Freebsd freebsd 4.8.0 -PRERELEASE
- Freebsd freebsd 4.8.0 -RELEASE-P7
- Freebsd freebsd 4.8.0 -RELENG
- Freebsd freebsd 4.9.0
- Freebsd freebsd 4.9.0 -PRERELEASE
- Freebsd freebsd 4.9.0 -RELENG
- Freebsd freebsd 5.0.0
- Freebsd freebsd 5.0.0 Alpha
- Freebsd freebsd 5.0.0 -RELEASE-P14
- Freebsd freebsd 5.0.0 -RELENG
- Freebsd freebsd 5.1.0
- Freebsd freebsd 5.1.0 -RELEASE
- Freebsd freebsd 5.1.0 -RELEASE/Alpha
- Freebsd freebsd 5.1.0 -RELEASE-P5
- Freebsd freebsd 5.1.0 -RELENG
- Freebsd freebsd 5.2.0
- Freebsd freebsd 5.2.0 -RELEASE
- Freebsd freebsd 5.2.0 -RELENG
- Freebsd freebsd 5.2.1 -RELEASE
- Freebsd freebsd 5.3.0
- Freebsd freebsd 5.3.0 -RELEASE
- Freebsd freebsd 5.3.0 -RELENG
- Freebsd freebsd 5.3.0 -STABLE
- Freebsd freebsd 5.4.0 -PRERELEASE
- Freebsd freebsd 5.4.0 -RELEASE
- Freebsd freebsd 5.4.0 -RELENG
- Freebsd freebsd -Current
- Hitachi alaxala_ax
- Hitachi gr3000
- Hitachi gr4000
- Hitachi gs4000
- Ietf rfc_1323_:_tcp_extensions_for_high_performance
- Microsoft windows_2000_advanced_server SP1
- Microsoft windows_2000_advanced_server SP2
- Microsoft windows_2000_advanced_server SP3
- Microsoft windows_2000_advanced_server SP4
- Microsoft windows_2000_advanced_server
- Microsoft windows_2000_datacenter_server SP1
- Microsoft windows_2000_datacenter_server SP2
- Microsoft windows_2000_datacenter_server SP3
- Microsoft windows_2000_datacenter_server SP4
- Microsoft windows_2000_datacenter_server
- Microsoft windows_2000_professional SP1
- Microsoft windows_2000_professional SP2
- Microsoft windows_2000_professional SP3
- Microsoft windows_2000_professional SP4
- Microsoft windows_2000_professional
- Microsoft windows_2000_server SP1
- Microsoft windows_2000_server SP2
- Microsoft windows_2000_server SP3
- Microsoft windows_2000_server SP4
- Microsoft windows_2000_server
- Microsoft windows_server_2003_datacenter_edition
- Microsoft windows_server_2003_datacenter_edition_itanium
- Microsoft windows_server_2003_enterprise_edition
- Microsoft windows_server_2003_enterprise_edition_itanium
- Microsoft windows_server_2003_standard_edition
- Microsoft windows_server_2003_standard_x64_edition
- Microsoft windows_server_2003_web_edition
- Microsoft windows_xp_64-bit_edition SP1
- Microsoft windows_xp_64-bit_edition
- Microsoft windows_xp_64-bit_edition_version_2003 SP1
- Microsoft windows_xp_64-bit_edition_version_2003
- Microsoft windows_xp_embedded SP1
- Microsoft windows_xp_embedded
- Microsoft windows_xp_home SP1
- Microsoft windows_xp_home
- Microsoft windows_xp_media_center_edition SP1
- Microsoft windows_xp_media_center_edition
- Microsoft windows_xp_professional SP1
- Microsoft windows_xp_professional
- Microsoft windows_xp_tablet_pc_edition SP1
- Microsoft windows_xp_tablet_pc_edition
- Nortel_networks bcm 1000
- Nortel_networks bcm 200
- Nortel_networks bcm 400
- Nortel_networks callpilot 200I
- Nortel_networks callpilot 201I
- Nortel_networks callpilot 702T
- Nortel_networks callpilot 703T
- Nortel_networks communications_server 1000
- Nortel_networks contact_center
- Nortel_networks ethernet_routing_switch 1612
- Nortel_networks ethernet_routing_switch 1624
- Nortel_networks ethernet_routing_switch 1648
- Nortel_networks optical_metro 5000
- Nortel_networks optical_metro 5100
- Nortel_networks optical_metro 5200
- Nortel_networks srg 1.0.0
- Nortel_networks universal_signaling_point 5200
- Nortel_networks universal_signaling_point_compact/lite
- Nortel_networks wlan_access_point 7220.0.0
- Nortel_networks wlan_access_point 7250.0.0
- Openbsd openbsd 3.0
- Openbsd openbsd 3.1
- Openbsd openbsd 3.2
- Openbsd openbsd 3.3
- Openbsd openbsd 3.4
- Openbsd openbsd 3.5
- Openbsd openbsd 3.6
- Sco open_server 6.0.0
- Sco unixware 7.1.3
- Sco unixware 7.1.4
- Yamaha rt105
- Yamaha rt250i
- Yamaha rt300i
- Yamaha rt57i
- Yamaha rtv700
- Yamaha rtx1000
- Yamaha rtx1100
- Yamaha rtx1500
- Yamaha rtx2000
References