CVE-2004-0790

Multiple TCP/IP - DoS

Title source: llm

Description

Multiple TCP/IP and ICMP implementations allow remote attackers to cause a denial of service (reset TCP connections) via spoofed ICMP error messages, aka the "blind connection-reset attack." NOTE: CVE-2004-0790, CVE-2004-0791, and CVE-2004-1060 have been SPLIT based on different attacks; CVE-2005-0065, CVE-2005-0066, CVE-2005-0067, and CVE-2005-0068 are related identifiers that are SPLIT based on the underlying vulnerability. While CVE normally SPLITs based on vulnerability, the attack-based identifiers exist due to the variety and number of affected implementations and solutions that address the attacks instead of the underlying vulnerabilities.

Exploits (3)

exploitdb WORKING POC VERIFIED

by houseofdabus · cdosmultiple

https://www.exploit-db.com/exploits/948

View Code ZIP pw:eip

exploitdb WRITEUP VERIFIED

by Fernando Gont · textdosmultiple

https://www.exploit-db.com/exploits/25389

View Code ZIP pw:eip

exploitdb WORKING POC

cdoswindows

https://www.exploit-db.com/exploits/942

View Code ZIP pw:eip

References (27)

[Various Sources] ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2006.4/SCOSA-2006.4.txt

[Mailing List] http://marc.info/?l=bugtraq&m=112861397904255&w=2

[Vendor Advisory] http://sunsolve.sun.com/search/document.do?assetkey=1-26-101658-1

[Vendor Advisory] http://sunsolve.sun.com/search/document.do?assetkey=1-26-57746-1

[Various Sources] http://www.gont.com.ar/drafts/icmp-attacks-against-tcp.html

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/13124

[Vendor Advisory] http://www.uniras.gov.uk/niscc/docs/al-20050412-00308.html?lang=en

[Various Sources] http://www.watersprings.org/pub/id/draft-gont-tcpm-icmp-attacks-03.txt

[Vendor Advisory] https://docs.microsoft.com/en-us/security-updates/securitybulletins/2005/ms05-019

[Vendor Advisory] https://docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-064

[Third Party Advisory, VDB Entry] https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1177

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/archive/1/418882/100/0/threaded

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/archive/1/449179/100/0/threaded

[Third Party Advisory, VDB Entry] https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A176

[Third Party Advisory, VDB Entry] https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1910

[Third Party Advisory, VDB Entry] https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A211

[Third Party Advisory, VDB Entry] https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A3458

[Third Party Advisory, VDB Entry] https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A412

[Third Party Advisory, VDB Entry] https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A4804

[Third Party Advisory, VDB Entry] https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A514

... and 7 more

Scores

EPSS 0.8513

EPSS Percentile 99.4%

Details

Status published

Products (10)

microsoft/windows_2000 (2 CPE variants)

microsoft/windows_2003_server r2

microsoft/windows_98

microsoft/windows_98se

microsoft/windows_me

microsoft/windows_xp (4 CPE variants)

sun/solaris 9.0

sun/solaris 10.0

sun/sunos 5.7

sun/sunos 5.8

Published Apr 12, 2005

Tracked Since Feb 18, 2026