Insufficient Random Number Generator in FreeBSD and BSD-based OSes Allows TCP Connection Spoofing

Insufficient Random Number Generator in FreeBSD and BSD-based OSes Allows TCP Connection Spoofing

CVE-2000-0916 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

FreeBSD 4.1.1 and earlier, and possibly other BSD-based OSes, uses an insufficient random number generator to generate initial TCP sequence numbers (ISN), which allows remote attackers to spoof TCP connections.

Learn more about our Web Application Penetration Testing UK.