Eaton Cooper Power Systems ProView 4.0 and 5.0 before 5.0 11 on Form 6 controls and Idea and IdeaPLUS relays generates TCP initial sequence number (ISN) values linearly, which makes it easier for remote attackers to spoof TCP sessions by predicting an ISN value.
Weakness
An exact value or random number can be precisely predicted by observing previous values.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Proview | Eaton | 4.0 (including) | 4.0 (including) |
| Proview | Eaton | 5.0 (including) | 5.0 (including) |
| Proview | Eaton | 5.0.1 (including) | 5.0.1 (including) |
| Proview | Eaton | 5.0.2 (including) | 5.0.2 (including) |
| Proview | Eaton | 5.0.3 (including) | 5.0.3 (including) |
| Proview | Eaton | 5.0.4 (including) | 5.0.4 (including) |
| Proview | Eaton | 5.0.5 (including) | 5.0.5 (including) |
| Proview | Eaton | 5.0.6 (including) | 5.0.6 (including) |
| Proview | Eaton | 5.0.7 (including) | 5.0.7 (including) |
| Proview | Eaton | 5.0.8 (including) | 5.0.8 (including) |
| Proview | Eaton | 5.0.9 (including) | 5.0.9 (including) |
| Proview | Eaton | 5.0.10 (including) | 5.0.10 (including) |