The Last Part of 3 Medium Vulnerabilities reported by Security Space Advanced Security Audit which I would like to see how I should fix it.
Latest ASG 9.003
General: TCP sequence number approximation
Description
general/tcp
The remote host might be vulnerable to a sequence number approximation
bug, which may allow an attacker to send spoofed RST packets to the remote
host and close established connections.
This may cause problems for some dedicated services (BGP, a VPN over
TCP, etc...).
Solution : See Multiple Vendor TCP Sequence Number Approximation Vulnerability
Risk factor : Medium
CVE Description
TCP, when using a large Window Size, makes it easier for remote attackers to guess sequence numbers and cause a denial of service (connection loss) to persistent TCP connections by repeatedly injecting a TCP RST packet, especially in protocols that use long-lived connections, such as BGP
This thread was automatically locked due to age.
