Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The TCP MSS (maximum segment size) functionality in netinet allows remote attackers to cause a denial of service (resource exhaustion) via (1) a low MTU, which causes a large number of small packets to be produced, or (2) via a large number of packets with a small TCP payload, which cause a large number of calls to the resource-intensive sowakeup function.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
FreeBSD NetINet TCP MSS大小远程拒绝服务漏洞
Vulnerability Description
FreeBSD是一款开放源代码的操作系统。 FreeBSD netinet实现对TCP MSS处理存在问题,远程攻击者可以利用这个漏洞对目标进行拒绝服务攻击。 为了网络连接优化,TCP需要调整MSS,然后包大小必须遵守路径MTU,这可以通过动态的从远程主机和网络的反馈进行调整。 要进行资源耗竭,可通过如下两种方法: - TCP连接阶段设置通告在末端间交换的本地MSS,远程末端可以设置任意低的MSS值(除了BSD代码强制限制的64八位组的最小MTU)。当本地主机发送数据会强制发送个小的IP包来代替大包。 如
CVSS Information
N/A
Vulnerability Type
N/A