TCP Sequence Number Prediction

Created 5/30/02
CVE 1999-0077
CVE 2000-0328
CVE 2001-0288

Impact

A remote attacker could hijack an existing session or create a new session using an arbitrary source IP address. If services which use address-based authentication mechanisms are enabled on the server, the attacker could execute arbitrary commands.

Background

This section is only available with the purchase of SAINTwriter™, SAINTexpressSM, or WebSAINTSM.

The Problem

This section is only available with the purchase of SAINTwriter™, SAINTexpressSM, or WebSAINTSM.

Resolution

This section is only available with the purchase of SAINTwriter™, SAINTexpressSM, or WebSAINTSM.

Where can I read more about this?

This section is only available with the purchase of SAINTwriter™, SAINTexpressSM, or WebSAINTSM.