Predictable TCP Initial Sequence Numbers (ISN) in Cisco CBOS 2.3.8 and earlier: Remote Spoofing and Hijacking Vulnerability

Predictable TCP Initial Sequence Numbers (ISN) in Cisco CBOS 2.3.8 and earlier: Remote Spoofing and Hijacking Vulnerability

CVE-2001-0751 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

Cisco switches and routers running CBOS 2.3.8 and earlier use predictable TCP Initial Sequence Numbers (ISN), which allows remote attackers to spoof or hijack TCP connections.

Learn more about our Web Application Penetration Testing UK.