CVE-2005-0740
OpenBSD 3.5-3.6 - Denial of Service via TCP Timestamp Option
Title source: llmDescription
The TCP stack (tcp_input.c) in OpenBSD 3.5 and 3.6 allows remote attackers to cause a denial of service (system panic) via crafted values in the TCP timestamp option, which causes invalid arguments to be used when calculating the retransmit timeout.
References (4)
Core 4
Core References
Patch, Vendor Advisory vendor-advisory
x_refsource_openbsd
http://www.openbsd.org/errata35.html
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/13819
Patch, Vendor Advisory vdb-entry
x_refsource_sectrack
http://securitytracker.com/id?1012861
Exploit, Patch, Vendor Advisory vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/12250
Scores
EPSS
0.0092
EPSS Percentile
76.2%
Details
Status
published
Products (17)
openbsd/openbsd
2.0
openbsd/openbsd
2.1
openbsd/openbsd
2.2
openbsd/openbsd
2.3
openbsd/openbsd
2.4
openbsd/openbsd
2.5
openbsd/openbsd
2.6
openbsd/openbsd
2.7
openbsd/openbsd
2.8
openbsd/openbsd
2.9
... and 7 more
Published
Jan 13, 2005
Tracked Since
Feb 18, 2026