CVE-2008-4609

描述

The TCP implementation in (1) Linux, (2) platforms based on BSD Unix, (3) Microsoft Windows, (4) Cisco products, and probably other operating systems allows remote attackers to cause a denial of service (connection queue exhaustion) via multiple vectors that manipulate information in the TCP state table, as demonstrated by sockstress.

如何修補 CVE-2008-4609

目前尚未發布修補版本。可考慮移除受影響套件,或參考下方連結中的上游建議。

• Debian/linux—未列出修補版本

CVE-2008-4609 正在被利用嗎?

中等 — EPSS 為 32.1%,可持續追蹤但非最高優先。

受影響套件(1)

• from 0

參考連結(1)

• ADVISORYsecurity-tracker.debian.org/tracker/CVE-2008-4609