The tcp_respond function in netinet/tcp_subr.c in OpenBSD 4.1 and 4.2 allows attackers to cause a denial of service (panic) via crafted TCP packets. NOTE: some of these details are obtained from third party information.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Openbsd | Openbsd | 4.1 (including) | 4.1 (including) |
| Openbsd | Openbsd | 4.2 (including) | 4.2 (including) |
References
- http://secunia.com/advisories/29078
- http://www.openbsd.org/errata41.html#013_tcprespond
- http://www.openbsd.org/errata42.html#007_tcprespond
- http://www.securityfocus.com/bid/27949
- http://www.securitytracker.com/id?1019495
- http://www.vupen.com/english/advisories/2008/0660
- http://secunia.com/advisories/29078
- http://www.openbsd.org/errata41.html#013_tcprespond
- http://www.openbsd.org/errata42.html#007_tcprespond
- http://www.securityfocus.com/bid/27949
- http://www.securitytracker.com/id?1019495
- http://www.vupen.com/english/advisories/2008/0660