CVE-2000-0916

FreeBSD <4.1.1 - Info Disclosure

Title source: llm

Description

FreeBSD 4.1.1 and earlier, and possibly other BSD-based OSes, uses an insufficient random number generator to generate initial TCP sequence numbers (ISN), which allows remote attackers to spoof TCP connections.

Exploits (1)

exploitdb WRITEUP

remotelinux

https://www.exploit-db.com/exploits/19522

View Code ZIP pw:eip

References (2)

[Patch, Vendor Advisory] ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-00:52.tcp-iss.asc

[Patch, Vendor Advisory] http://www.securityfocus.com/bid/1766

Scores

EPSS 0.0835

EPSS Percentile 92.3%

Details

Status published

Products (5)

freebsd/freebsd 2.0

freebsd/freebsd 3.0

freebsd/freebsd 4.0

freebsd/freebsd 4.1

freebsd/freebsd 4.1.1

Published Dec 19, 2000

Tracked Since Feb 18, 2026