Vulnerability in N/a
CVE-2005-0068
The original design of ICMP does not require authentication for host-generated ICMP error messages, which makes it easier for attackers to forge ICMP error messages for specific TCP connections and cause a denial of service, as demonstrate…
EPSS: 0.544 (98.9th percentile) — read the EPSS interpretation.
Affected products
- N/a — versions n/a
References
- 13124 (vdb-entry, x_refsource_BID)
- www.gont.com.ar/drafts/icmp-attacks-against-tcp.html (x_refsource_MISC)