CVE-2004-0002

FreeBSD - Denial of Service via TCP MSS Resource Exhaustion

Title source: llm
STIX 2.1

Description

The TCP MSS (maximum segment size) functionality in netinet allows remote attackers to cause a denial of service (resource exhaustion) via (1) a low MTU, which causes a large number of small packets to be produced, or (2) via a large number of packets with a small TCP payload, which cause a large number of calls to the resource-intensive sowakeup function.

References (1)

Core 1
Core References
Patch, Vendor Advisory x_refsource_confirm
http://lists.freebsd.org/pipermail/cvs-src/2004-January/016271.html

Scores

EPSS 0.0127
EPSS Percentile 79.7%

Details

Status published
Products (19)
freebsd/freebsd 3.0 (2 CPE variants)
freebsd/freebsd 3.1
freebsd/freebsd 3.2
freebsd/freebsd 3.3
freebsd/freebsd 3.4
freebsd/freebsd 3.5 (2 CPE variants)
freebsd/freebsd 3.5.1 (3 CPE variants)
freebsd/freebsd 4.0 (3 CPE variants)
freebsd/freebsd 4.1
freebsd/freebsd 4.1.1 (3 CPE variants)
... and 9 more
Published Mar 03, 2004
Tracked Since Feb 18, 2026