Description
Multiple TCP implementations could allow remote attackers to cause a denial of service (bandwidth and CPU exhaustion) by setting the maximum segment size (MSS) to a very small number and requesting large amounts of data, which generates more packets with less TCP-level data that amplify network traffic and consume more server CPU to process.
Affected products
- FreeBSD / FreeBSD4.3 – 4.3
- HP / hp-ux11.00 – 11.00
- HP / hp-ux11.0.4 – 11.0.4
- HP / hp-ux11.11 – 11.11
- HP / vvos11.04 – 11.04
- Linux / Linux kernel2.4.0 – 2.4.0
- Linux / Linux kernel2.4.1 – 2.4.1
- Linux / Linux kernel2.4.2 – 2.4.2
- Linux / Linux kernel2.4.3 – 2.4.3
- Linux / Linux kernel2.4.4 – 2.4.4
- Linux / Linux kernel2.4.5 – 2.4.5
- Microsoft / windows_2000
- Microsoft / windows_2000
- Microsoft / windows_2000
- Microsoft / windows_nt4.0 – 4.0
- Microsoft / windows_nt4.0 – 4.0
- Microsoft / windows_nt4.0 – 4.0
- Microsoft / windows_nt4.0 – 4.0
- Microsoft / windows_nt4.0 – 4.0
- Microsoft / windows_nt4.0 – 4.0
- Microsoft / windows_nt4.0 – 4.0
- Microsoft / windows_nt4.0 – 4.0
- NetBSD / netbsd1.5 – 1.5
- NetBSD / netbsd1.5.1 – 1.5.1
- OpenBSD / OpenBSD2.8 – 2.8
- OpenBSD / OpenBSD2.9 – 2.9
- sun / sunos5.5.1 – 5.5.1
- sun / sunos5.7 – 5.7
- sun / sunos5.8 – 5.8