Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple TCP implementations could allow remote attackers to cause a denial of service (bandwidth and CPU exhaustion) by setting the maximum segment size (MSS) to a very small number and requesting large amounts of data, which generates more packets with less TCP-level data that amplify network traffic and consume more server CPU to process.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
多种操作系统小TCP MSS拒绝服务漏洞
Vulnerability Description
CVE(CAN) ID: CAN-2001-1244 在一些操作系统的TCP栈实现中存在一些潜在的拒绝服务问题。 TCP选项中有一个MSS(最大分片大小)。TCP客户端用它来告诉对方自己每个分片的最大TCP 数据长度。 如果将MSS设成一个很小的数值(例如 1),然后通过一个TCP服务提交大量的请求,可能引起 对方服务器产生大量的回复请求(多倍于攻击者的发送数量),这可能导致对方服务器或 网络的负荷大大增加,造成拒绝服务攻击。
CVSS Information
N/A
Vulnerability Type
N/A