CVE-1999-0305

OpenBSD <= 2.2 and FreeBSD <= 2.2.5 - TCP Connection Spoofing via Source Routed Packets

Title source: llm
STIX 2.1

Description

The system configuration control (sysctl) facility in BSD based operating systems OpenBSD 2.2 and earlier, and FreeBSD 2.2.5 and earlier, does not properly restrict source routed packets even when the (1) dosourceroute or (2) forwarding variables are set, which allows remote attackers to spoof TCP connections.

References (3)

Core 3
Core References
Various Sources x_refsource_misc
http://www.openbsd.org/advisories/sourceroute.txt
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://www.osvdb.org/11502
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/736

Scores

EPSS 0.0073
EPSS Percentile 72.9%

Details

Status published
Products (6)
bsdi/bsd_os
freebsd/freebsd 2.2
freebsd/freebsd 2.2.5
openbsd/openbsd 2.0
openbsd/openbsd 2.1
openbsd/openbsd 2.2
Published Feb 01, 1998
Tracked Since Feb 18, 2026