|
Family: Firewalls --> Category: infos
Weak Initial Sequence Number Vulnerability Scan
Vulnerability Scan Summary checks for ISN
Detailed Explanation for this Vulnerability Test
The remote host seems to generate Initial Sequence Numbers (ISN) in a weak
manner which seems to solely depend on the source and dest port of the TCP
packets.
A possible hacker may exploit this flaw to establish spoofed connections to the
remote host.
The Raptor Firewall and Novell Netware are known to be vulnerable to this
flaw, although other network devices may be vulnerable as well.
Solution :
If you are using a Raptor Firewall, see
http://www.symantec.com/techsupp/bulletin/archive/firewall/082002firewall.html
Otherwise, contact your vendor for a patch.
Reference : http://online.securityfocus.com/archive/1/285729
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|