NVD Vulnerability Detail

CVE-2005-1184

Summary	The TCP/IP stack in multiple operating systems allows remote attackers to cause a denial of service (CPU consumption) via a TCP packet with the correct sequence number but the wrong Acknowledgement number, which generates a large number of "keep alive" packets. NOTE: some followups indicate that this issue could not be replicated.
Publication Date	May 2, 2005, 1 p.m.
Registration Date	Jan. 29, 2021, 5:58 p.m.
Last Update	April 30, 2019, 11:27 p.m.

CVSS2.0 : MEDIUM
Score	5.0
Vector	AV:N/AC:L/Au:N/C:N/I:N/A:P
攻撃元区分(AV)	ネットワーク
攻撃条件の複雑さ(AC)	低
攻撃前の認証要否(Au)	不要
機密性への影響(C)	なし
完全性への影響(I)	なし
可用性への影響(A)	低
Get all privileges.	いいえ
Get user privileges	いいえ
Get other privileges	いいえ
User operation required	いいえ

Affected software configurations

Configuration1	or higher	or less	more than	less than
cpe:2.3:o:microsoft:windows_2000::::::::
cpe:2.3:o:microsoft:windows_2000::sp1::::::*
cpe:2.3:o:microsoft:windows_2000::sp2::::::*
cpe:2.3:o:microsoft:windows_2000::sp3::::::*
cpe:2.3:o:microsoft:windows_2000::sp4::::::*
cpe:2.3:o:microsoft:windows_2003_server:datacenter_64-bit:sp1::::::
cpe:2.3:o:microsoft:windows_2003_server:enterprise::64-bit:::::
cpe:2.3:o:microsoft:windows_2003_server:enterprise:sp1::::::
cpe:2.3:o:microsoft:windows_2003_server:enterprise_64-bit:::::::*
cpe:2.3:o:microsoft:windows_2003_server:enterprise_64-bit:sp1::::::
cpe:2.3:o:microsoft:windows_2003_server:r2::64-bit:::::
cpe:2.3:o:microsoft:windows_2003_server:r2::datacenter_64-bit:::::
cpe:2.3:o:microsoft:windows_2003_server:r2:sp1::::::
cpe:2.3:o:microsoft:windows_2003_server:standard::64-bit:::::
cpe:2.3:o:microsoft:windows_2003_server:standard:sp1::::::
cpe:2.3:o:microsoft:windows_2003_server:standard_64-bit:::::::*
cpe:2.3:o:microsoft:windows_2003_server:web:::::::*
cpe:2.3:o:microsoft:windows_2003_server:web:sp1::::::
cpe:2.3:o:microsoft:windows_98se::::::::
cpe:2.3:o:microsoft:windows_nt:4.0::enterprise_server:::::
cpe:2.3:o:microsoft:windows_nt:4.0::server:::::
cpe:2.3:o:microsoft:windows_nt:4.0::terminal_server:::::
cpe:2.3:o:microsoft:windows_nt:4.0::workstation:::::
cpe:2.3:o:microsoft:windows_nt:4.0:sp1:enterprise_server:::::*
cpe:2.3:o:microsoft:windows_nt:4.0:sp1:server:::::*
cpe:2.3:o:microsoft:windows_nt:4.0:sp1:terminal_server:::::*
cpe:2.3:o:microsoft:windows_nt:4.0:sp1:workstation:::::*
cpe:2.3:o:microsoft:windows_nt:4.0:sp2:enterprise_server:::::*
cpe:2.3:o:microsoft:windows_nt:4.0:sp2:server:::::*
cpe:2.3:o:microsoft:windows_nt:4.0:sp2:terminal_server:::::*
cpe:2.3:o:microsoft:windows_nt:4.0:sp2:workstation:::::*
cpe:2.3:o:microsoft:windows_nt:4.0:sp3:enterprise_server:::::*
cpe:2.3:o:microsoft:windows_nt:4.0:sp3:server:::::*
cpe:2.3:o:microsoft:windows_nt:4.0:sp3:terminal_server:::::*
cpe:2.3:o:microsoft:windows_nt:4.0:sp3:workstation:::::*
cpe:2.3:o:microsoft:windows_nt:4.0:sp4:enterprise_server:::::*
cpe:2.3:o:microsoft:windows_nt:4.0:sp4:server:::::*
cpe:2.3:o:microsoft:windows_nt:4.0:sp4:terminal_server:::::*
cpe:2.3:o:microsoft:windows_nt:4.0:sp4:workstation:::::*
cpe:2.3:o:microsoft:windows_nt:4.0:sp5:enterprise_server:::::*
cpe:2.3:o:microsoft:windows_nt:4.0:sp5:server:::::*
cpe:2.3:o:microsoft:windows_nt:4.0:sp5:terminal_server:::::*
cpe:2.3:o:microsoft:windows_nt:4.0:sp5:workstation:::::*
cpe:2.3:o:microsoft:windows_nt:4.0:sp6:enterprise_server:::::*
cpe:2.3:o:microsoft:windows_nt:4.0:sp6:server:::::*
cpe:2.3:o:microsoft:windows_nt:4.0:sp6:terminal_server:::::*
cpe:2.3:o:microsoft:windows_nt:4.0:sp6:workstation:::::*
cpe:2.3:o:microsoft:windows_nt:4.0:sp6a:enterprise_server:::::*
cpe:2.3:o:microsoft:windows_nt:4.0:sp6a:server:::::*
cpe:2.3:o:microsoft:windows_nt:4.0:sp6a:terminal_server:::::*
cpe:2.3:o:microsoft:windows_nt:4.0:sp6a:workstation:::::*
cpe:2.3:o:microsoft:windows_xp:::home:::::*
cpe:2.3:o:microsoft:windows_xp::gold:professional:::::
cpe:2.3:o:microsoft:windows_xp::sp1:home:::::
cpe:2.3:o:microsoft:windows_xp::sp2:home:::::

Related information, measures and tools

No	URL	refsource
1	http://seclists.org/lists/fulldisclosure/2005/Apr/0358.html	FULLDISC
2	http://seclists.org/lists/fulldisclosure/2005/Apr/0383.html	FULLDISC
3	http://seclists.org/lists/fulldisclosure/2005/Apr/0385.html	FULLDISC
4	http://www.securityfocus.com/bid/13215	BID
5	https://exchange.xforce.ibmcloud.com/vulnerabilities/40502	XF

Common Vulnerabilities List

Configuration1	or higher	or less	more than	less than
cpe:2.3:o:microsoft:windows_2000::::::::
cpe:2.3:o:microsoft:windows_2000::sp1::::::*
cpe:2.3:o:microsoft:windows_2000::sp2::::::*
cpe:2.3:o:microsoft:windows_2000::sp3::::::*
cpe:2.3:o:microsoft:windows_2000::sp4::::::*
cpe:2.3:o:microsoft:windows_2003_server:datacenter_64-bit:sp1::::::
cpe:2.3:o:microsoft:windows_2003_server:enterprise::64-bit:::::
cpe:2.3:o:microsoft:windows_2003_server:enterprise:sp1::::::
cpe:2.3:o:microsoft:windows_2003_server:enterprise_64-bit:::::::*
cpe:2.3:o:microsoft:windows_2003_server:enterprise_64-bit:sp1::::::
cpe:2.3:o:microsoft:windows_2003_server:r2::64-bit:::::
cpe:2.3:o:microsoft:windows_2003_server:r2::datacenter_64-bit:::::
cpe:2.3:o:microsoft:windows_2003_server:r2:sp1::::::
cpe:2.3:o:microsoft:windows_2003_server:standard::64-bit:::::
cpe:2.3:o:microsoft:windows_2003_server:standard:sp1::::::
cpe:2.3:o:microsoft:windows_2003_server:standard_64-bit:::::::*
cpe:2.3:o:microsoft:windows_2003_server:web:::::::*
cpe:2.3:o:microsoft:windows_2003_server:web:sp1::::::
cpe:2.3:o:microsoft:windows_98se::::::::
cpe:2.3:o:microsoft:windows_nt:4.0::enterprise_server:::::
cpe:2.3:o:microsoft:windows_nt:4.0::server:::::
cpe:2.3:o:microsoft:windows_nt:4.0::terminal_server:::::
cpe:2.3:o:microsoft:windows_nt:4.0::workstation:::::
cpe:2.3:o:microsoft:windows_nt:4.0:sp1:enterprise_server:::::*
cpe:2.3:o:microsoft:windows_nt:4.0:sp1:server:::::*
cpe:2.3:o:microsoft:windows_nt:4.0:sp1:terminal_server:::::*
cpe:2.3:o:microsoft:windows_nt:4.0:sp1:workstation:::::*
cpe:2.3:o:microsoft:windows_nt:4.0:sp2:enterprise_server:::::*
cpe:2.3:o:microsoft:windows_nt:4.0:sp2:server:::::*
cpe:2.3:o:microsoft:windows_nt:4.0:sp2:terminal_server:::::*
cpe:2.3:o:microsoft:windows_nt:4.0:sp2:workstation:::::*
cpe:2.3:o:microsoft:windows_nt:4.0:sp3:enterprise_server:::::*
cpe:2.3:o:microsoft:windows_nt:4.0:sp3:server:::::*
cpe:2.3:o:microsoft:windows_nt:4.0:sp3:terminal_server:::::*
cpe:2.3:o:microsoft:windows_nt:4.0:sp3:workstation:::::*
cpe:2.3:o:microsoft:windows_nt:4.0:sp4:enterprise_server:::::*
cpe:2.3:o:microsoft:windows_nt:4.0:sp4:server:::::*
cpe:2.3:o:microsoft:windows_nt:4.0:sp4:terminal_server:::::*
cpe:2.3:o:microsoft:windows_nt:4.0:sp4:workstation:::::*
cpe:2.3:o:microsoft:windows_nt:4.0:sp5:enterprise_server:::::*
cpe:2.3:o:microsoft:windows_nt:4.0:sp5:server:::::*
cpe:2.3:o:microsoft:windows_nt:4.0:sp5:terminal_server:::::*
cpe:2.3:o:microsoft:windows_nt:4.0:sp5:workstation:::::*
cpe:2.3:o:microsoft:windows_nt:4.0:sp6:enterprise_server:::::*
cpe:2.3:o:microsoft:windows_nt:4.0:sp6:server:::::*
cpe:2.3:o:microsoft:windows_nt:4.0:sp6:terminal_server:::::*
cpe:2.3:o:microsoft:windows_nt:4.0:sp6:workstation:::::*
cpe:2.3:o:microsoft:windows_nt:4.0:sp6a:enterprise_server:::::*
cpe:2.3:o:microsoft:windows_nt:4.0:sp6a:server:::::*
cpe:2.3:o:microsoft:windows_nt:4.0:sp6a:terminal_server:::::*
cpe:2.3:o:microsoft:windows_nt:4.0:sp6a:workstation:::::*
cpe:2.3:o:microsoft:windows_xp:::home:::::*
cpe:2.3:o:microsoft:windows_xp::gold:professional:::::
cpe:2.3:o:microsoft:windows_xp::sp1:home:::::
cpe:2.3:o:microsoft:windows_xp::sp2:home:::::