5.0
MEDIUM
CVE-2005-0356
Oracle TCP PAWS Denial of Service
Description

Multiple TCP implementations with Protection Against Wrapped Sequence Numbers (PAWS) with the timestamps option enabled allow remote attackers to cause a denial of service (connection loss) via a spoofed packet with a large timer value, which causes the host to discard later packets because they appear to be too old.

INFO

Published Date :

May 31, 2005, 4 a.m.

Last Modified :

April 30, 2019, 2:27 p.m.

Source :

[email protected]

Remotely Exploitable :

Yes !

Impact Score :

2.9

Exploitability Score :

10.0
Affected Products

The following products are affected by CVE-2005-0356 vulnerability. Even if cvefeed.io is aware of the exact versions of the products that are affected, the information is not represented in the table below.

ID Vendor Product Action
1 Cisco emergency_responder
2 Cisco content_services_switch_11500
3 Cisco aironet_ap1200
4 Cisco secure_access_control_server
5 Cisco aironet_ap350
6 Cisco call_manager
7 Cisco ip_contact_center_enterprise
8 Cisco ciscoworks_common_services
9 Cisco sn_5420_storage_router_firmware
10 Cisco meetingplace
11 Cisco content_services_switch_11050
12 Cisco content_services_switch_11150
13 Cisco content_services_switch_11800
14 Cisco content_services_switch_11000
15 Cisco webns
16 Cisco ciscoworks_common_management_foundation
17 Cisco ciscoworks_cd1
18 Cisco unity_server
19 Cisco agent_desktop
20 Cisco e-mail_manager
21 Cisco intelligent_contact_manager
22 Cisco interactive_voice_response
23 Cisco ip_contact_center_express
24 Cisco personal_assistant
25 Cisco remote_monitoring_suite_option
26 Cisco support_tools
27 Cisco web_collaboration_option
28 Cisco mgx_8230
29 Cisco mgx_8250
30 Cisco ciscoworks_access_control_list_manager
31 Cisco ciscoworks_lms
32 Cisco ciscoworks_vpn_security_management_solution
33 Cisco ciscoworks_windows
34 Cisco content_services_switch_11501
35 Cisco content_services_switch_11503
36 Cisco content_services_switch_11506
37 Cisco ciscoworks_1105_hosting_solution_engine
38 Cisco ciscoworks_1105_wireless_lan_solution_engine
39 Cisco ciscoworks_windows_wug
40 Cisco conference_connection
41 Cisco sn_5420_storage_router
42 Cisco sn_5428_storage_router
1 Nortel callpilot
2 Nortel business_communications_manager
3 Nortel contact_center
4 Nortel 7220_wlan_access_point
5 Nortel 7250_wlan_access_point
6 Nortel ethernet_routing_switch_1612
7 Nortel ethernet_routing_switch_1624
8 Nortel ethernet_routing_switch_1648
9 Nortel optical_metro_5000
10 Nortel optical_metro_5100
11 Nortel optical_metro_5200
12 Nortel succession_communication_server_1000
13 Nortel survivable_remote_gateway
14 Nortel universal_signaling_point
1 Yamaha rt57i
2 Yamaha rtv700
3 Yamaha rtx1000
4 Yamaha rtx1100
5 Yamaha rtx1500
6 Yamaha rt105
7 Yamaha rt250i
8 Yamaha rt300i
9 Yamaha rtx2000
1 Hitachi alaxala
2 Hitachi gr3000
3 Hitachi gr4000
4 Hitachi gs4000
1 Microsoft windows_2000
2 Microsoft windows_2003_server
3 Microsoft windows_xp
1 Freebsd freebsd
1 Openbsd openbsd
1 F5 tmos
1 Alaxala alaxala_networks
: Total Affected Vendor : 9 | Products : 76
References to Advisories, Solutions, and Tools

Here, you will find a curated list of external links that provide in-depth information, practical solutions, and valuable tools related to CVE-2005-0356.

URL Resource
ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-05:15.tcp.asc
ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2005.64/SCOSA-2005.64.txt
http://secunia.com/advisories/15393
http://secunia.com/advisories/15417/ Patch
http://secunia.com/advisories/18222
http://secunia.com/advisories/18662
http://support.avaya.com/elmodocs2/security/ASA-2006-032.htm
http://www.cisco.com/warp/public/707/cisco-sn-20050518-tcpts.shtml Vendor Advisory
http://www.kb.cert.org/vuls/id/637934 Third Party Advisory US Government Resource
http://www.securityfocus.com/bid/13676 Exploit
https://exchange.xforce.ibmcloud.com/vulnerabilities/20635

We scan GitHub repositories to detect new proof-of-concept exploits. Following list is a collection of public exploits and proof-of-concepts, which have been published on GitHub (sorted by the most recently updated).

Results are limited to the first 15 repositories due to potential performance issues.

The following list is the news that have been mention CVE-2005-0356 vulnerability anywhere in the article.

The following table lists the changes that have been made to the CVE-2005-0356 vulnerability over time.

Vulnerability history details can be useful for understanding the evolution of a vulnerability, and for identifying the most recent changes that may impact the vulnerability's severity, exploitability, or other characteristics.

  • CVE Modified by [email protected]

    May. 14, 2024

    Action Type Old Value New Value
  • CPE Deprecation Remap by [email protected]

    Apr. 30, 2019

    Action Type Old Value New Value
    Changed CPE Configuration OR *cpe:2.3:o:microsoft:windows_2000:*:sp4:server:*:*:*:*:* OR *cpe:2.3:o:microsoft:windows_2000:*:sp4:*:*:*:*:*:*
  • CPE Deprecation Remap by [email protected]

    Apr. 30, 2019

    Action Type Old Value New Value
    Changed CPE Configuration OR *cpe:2.3:o:microsoft:windows_2000:*:*:server:*:*:*:*:* OR *cpe:2.3:o:microsoft:windows_2000:*:*:*:*:*:*:*:*
  • CPE Deprecation Remap by [email protected]

    Apr. 30, 2019

    Action Type Old Value New Value
    Changed CPE Configuration OR *cpe:2.3:o:microsoft:windows_2000:*:*:professional:*:*:*:*:* OR *cpe:2.3:o:microsoft:windows_2000:*:*:*:*:*:*:*:*
  • CPE Deprecation Remap by [email protected]

    Apr. 30, 2019

    Action Type Old Value New Value
    Changed CPE Configuration OR *cpe:2.3:o:microsoft:windows_2000:*:sp4:professional:*:*:*:*:* OR *cpe:2.3:o:microsoft:windows_2000:*:sp4:*:*:*:*:*:*
  • CPE Deprecation Remap by [email protected]

    Apr. 30, 2019

    Action Type Old Value New Value
    Changed CPE Configuration OR *cpe:2.3:o:microsoft:windows_2000:*:sp4:datacenter_server:*:*:*:*:* OR *cpe:2.3:o:microsoft:windows_2000:*:sp4:*:*:*:*:*:*
  • CPE Deprecation Remap by [email protected]

    Apr. 30, 2019

    Action Type Old Value New Value
    Changed CPE Configuration OR *cpe:2.3:o:microsoft:windows_2000:*:*:datacenter_server:*:*:*:*:* OR *cpe:2.3:o:microsoft:windows_2000:*:*:*:*:*:*:*:*
  • CPE Deprecation Remap by [email protected]

    Apr. 30, 2019

    Action Type Old Value New Value
    Changed CPE Configuration OR *cpe:2.3:o:microsoft:windows_2000:*:sp4:advanced_server:*:*:*:*:* OR *cpe:2.3:o:microsoft:windows_2000:*:sp4:*:*:*:*:*:*
  • CPE Deprecation Remap by [email protected]

    Apr. 30, 2019

    Action Type Old Value New Value
    Changed CPE Configuration OR *cpe:2.3:o:microsoft:windows_2000:*:*:advanced_server:*:*:*:*:* OR *cpe:2.3:o:microsoft:windows_2000:*:*:*:*:*:*:*:*
  • CPE Deprecation Remap by [email protected]

    Apr. 30, 2019

    Action Type Old Value New Value
    Changed CPE Configuration OR *cpe:2.3:o:microsoft:windows_2000:*:sp3:server:*:*:*:*:* OR *cpe:2.3:o:microsoft:windows_2000:*:sp3:*:*:*:*:*:*
  • CPE Deprecation Remap by [email protected]

    Apr. 30, 2019

    Action Type Old Value New Value
    Changed CPE Configuration OR *cpe:2.3:o:microsoft:windows_2000:*:sp3:professional:*:*:*:*:* OR *cpe:2.3:o:microsoft:windows_2000:*:sp3:*:*:*:*:*:*
  • CPE Deprecation Remap by [email protected]

    Apr. 30, 2019

    Action Type Old Value New Value
    Changed CPE Configuration OR *cpe:2.3:o:microsoft:windows_2000:*:sp3:datacenter_server:*:*:*:*:* OR *cpe:2.3:o:microsoft:windows_2000:*:sp3:*:*:*:*:*:*
  • CPE Deprecation Remap by [email protected]

    Apr. 30, 2019

    Action Type Old Value New Value
    Changed CPE Configuration OR *cpe:2.3:o:microsoft:windows_2000:*:sp3:advanced_server:*:*:*:*:* OR *cpe:2.3:o:microsoft:windows_2000:*:sp3:*:*:*:*:*:*
  • CPE Deprecation Remap by [email protected]

    Apr. 30, 2019

    Action Type Old Value New Value
    Changed CPE Configuration OR *cpe:2.3:o:microsoft:windows_2000:*:sp2:server:*:*:*:*:* OR *cpe:2.3:o:microsoft:windows_2000:*:sp2:*:*:*:*:*:*
  • CPE Deprecation Remap by [email protected]

    Apr. 30, 2019

    Action Type Old Value New Value
    Changed CPE Configuration OR *cpe:2.3:o:microsoft:windows_2000:*:sp2:professional:*:*:*:*:* OR *cpe:2.3:o:microsoft:windows_2000:*:sp2:*:*:*:*:*:*
  • CPE Deprecation Remap by [email protected]

    Apr. 30, 2019

    Action Type Old Value New Value
    Changed CPE Configuration OR *cpe:2.3:o:microsoft:windows_2000:*:sp2:datacenter_server:*:*:*:*:* OR *cpe:2.3:o:microsoft:windows_2000:*:sp2:*:*:*:*:*:*
  • CPE Deprecation Remap by [email protected]

    Apr. 30, 2019

    Action Type Old Value New Value
    Changed CPE Configuration OR *cpe:2.3:o:microsoft:windows_2000:*:sp2:advanced_server:*:*:*:*:* OR *cpe:2.3:o:microsoft:windows_2000:*:sp2:*:*:*:*:*:*
  • CPE Deprecation Remap by [email protected]

    Apr. 30, 2019

    Action Type Old Value New Value
    Changed CPE Configuration OR *cpe:2.3:o:microsoft:windows_2000:*:sp1:server:*:*:*:*:* OR *cpe:2.3:o:microsoft:windows_2000:*:sp1:*:*:*:*:*:*
  • CPE Deprecation Remap by [email protected]

    Apr. 30, 2019

    Action Type Old Value New Value
    Changed CPE Configuration OR *cpe:2.3:o:microsoft:windows_2000:*:sp1:professional:*:*:*:*:* OR *cpe:2.3:o:microsoft:windows_2000:*:sp1:*:*:*:*:*:*
  • CPE Deprecation Remap by [email protected]

    Apr. 30, 2019

    Action Type Old Value New Value
    Changed CPE Configuration OR *cpe:2.3:o:microsoft:windows_2000:*:sp1:datacenter_server:*:*:*:*:* OR *cpe:2.3:o:microsoft:windows_2000:*:sp1:*:*:*:*:*:*
  • CPE Deprecation Remap by [email protected]

    Apr. 30, 2019

    Action Type Old Value New Value
    Changed CPE Configuration OR *cpe:2.3:o:microsoft:windows_2000:*:sp1:advanced_server:*:*:*:*:* OR *cpe:2.3:o:microsoft:windows_2000:*:sp1:*:*:*:*:*:*
  • CPE Deprecation Remap by [email protected]

    Oct. 30, 2018

    Action Type Old Value New Value
    Changed CPE Configuration OR *cpe:2.3:a:f5:big-ip:9.0.4:*:*:*:*:*:*:* OR *cpe:2.3:o:f5:tmos:9.0.4:*:*:*:*:*:*:*
  • CPE Deprecation Remap by [email protected]

    Oct. 30, 2018

    Action Type Old Value New Value
    Changed CPE Configuration OR *cpe:2.3:a:f5:big-ip:4.5.9:*:*:*:*:*:*:* OR *cpe:2.3:o:f5:tmos:4.5.9:*:*:*:*:*:*:*
  • CPE Deprecation Remap by [email protected]

    Oct. 30, 2018

    Action Type Old Value New Value
    Changed CPE Configuration OR *cpe:2.3:a:f5:big-ip:4.5.12:*:*:*:*:*:*:* OR *cpe:2.3:o:f5:tmos:4.5.12:*:*:*:*:*:*:*
  • CPE Deprecation Remap by [email protected]

    Oct. 30, 2018

    Action Type Old Value New Value
    Changed CPE Configuration OR *cpe:2.3:a:f5:big-ip:4.0:*:*:*:*:*:*:* OR *cpe:2.3:o:f5:tmos:4.0:*:*:*:*:*:*:*
  • CPE Deprecation Remap by [email protected]

    Oct. 30, 2018

    Action Type Old Value New Value
    Changed CPE Configuration OR *cpe:2.3:o:cisco:sn_5420_storage_router:1.1(4):*:*:*:*:*:*:* OR *cpe:2.3:o:cisco:sn_5420_storage_router_firmware:1.1(4):*:*:*:*:*:*:*
  • CPE Deprecation Remap by [email protected]

    Oct. 30, 2018

    Action Type Old Value New Value
    Changed CPE Configuration OR *cpe:2.3:a:cisco:secure_access_control_server_solution_engine:3.3.2:*:*:*:*:*:*:* OR *cpe:2.3:a:cisco:secure_access_control_server:3.3.2:*:*:*:*:*:*:*
  • CPE Deprecation Remap by [email protected]

    Oct. 30, 2018

    Action Type Old Value New Value
    Changed CPE Configuration OR *cpe:2.3:o:cisco:content_services_switch_11500:7.30_(00.08)s:*:*:*:*:*:*:* OR *cpe:2.3:a:cisco:webns:7.30_(00.08)s:*:*:*:*:*:*:*
  • CPE Deprecation Remap by [email protected]

    Oct. 30, 2018

    Action Type Old Value New Value
    Changed CPE Configuration OR *cpe:2.3:o:cisco:content_services_switch_11500:7.20_(03.09)s:*:*:*:*:*:*:* OR *cpe:2.3:a:cisco:webns:7.20_(03.09)s:*:*:*:*:*:*:*
  • CPE Deprecation Remap by [email protected]

    Oct. 30, 2018

    Action Type Old Value New Value
    Changed CPE Configuration OR *cpe:2.3:a:f5:big-ip:9.0.5:*:*:*:*:*:*:* OR *cpe:2.3:o:f5:tmos:9.0.5:*:*:*:*:*:*:*
  • CPE Deprecation Remap by [email protected]

    Oct. 30, 2018

    Action Type Old Value New Value
    Changed CPE Configuration OR *cpe:2.3:a:f5:big-ip:9.0.3:*:*:*:*:*:*:* OR *cpe:2.3:o:f5:tmos:9.0.3:*:*:*:*:*:*:*
  • CPE Deprecation Remap by [email protected]

    Oct. 30, 2018

    Action Type Old Value New Value
    Changed CPE Configuration OR *cpe:2.3:a:f5:big-ip:4.5.6:*:*:*:*:*:*:* OR *cpe:2.3:o:f5:tmos:4.5.6:*:*:*:*:*:*:*
  • CPE Deprecation Remap by [email protected]

    Oct. 30, 2018

    Action Type Old Value New Value
    Changed CPE Configuration OR *cpe:2.3:a:f5:big-ip:4.5.11:*:*:*:*:*:*:* OR *cpe:2.3:o:f5:tmos:4.5.11:*:*:*:*:*:*:*
  • CPE Deprecation Remap by [email protected]

    Oct. 30, 2018

    Action Type Old Value New Value
    Changed CPE Configuration OR *cpe:2.3:a:f5:big-ip:4.2:*:*:*:*:*:*:* OR *cpe:2.3:o:f5:tmos:4.2:*:*:*:*:*:*:*
  • CPE Deprecation Remap by [email protected]

    Oct. 30, 2018

    Action Type Old Value New Value
    Changed CPE Configuration OR *cpe:2.3:o:cisco:sn_5420_storage_router:1.1.3:*:*:*:*:*:*:* OR *cpe:2.3:o:cisco:sn_5420_storage_router_firmware:1.1.3:*:*:*:*:*:*:*
  • CPE Deprecation Remap by [email protected]

    Oct. 30, 2018

    Action Type Old Value New Value
    Changed CPE Configuration OR *cpe:2.3:o:cisco:sn_5420_storage_router:1.1(5):*:*:*:*:*:*:* OR *cpe:2.3:o:cisco:sn_5420_storage_router_firmware:1.1(5):*:*:*:*:*:*:*
  • CPE Deprecation Remap by [email protected]

    Oct. 30, 2018

    Action Type Old Value New Value
    Changed CPE Configuration OR *cpe:2.3:o:cisco:sn_5420_storage_router:1.1(3):*:*:*:*:*:*:* OR *cpe:2.3:o:cisco:sn_5420_storage_router_firmware:1.1(3):*:*:*:*:*:*:*
  • CPE Deprecation Remap by [email protected]

    Oct. 30, 2018

    Action Type Old Value New Value
    Changed CPE Configuration OR *cpe:2.3:a:cisco:secure_access_control_server_solution_engine:3.3.1:*:*:*:*:*:*:* OR *cpe:2.3:a:cisco:secure_access_control_server:3.3.1:*:*:*:*:*:*:*
  • CPE Deprecation Remap by [email protected]

    Oct. 30, 2018

    Action Type Old Value New Value
    Changed CPE Configuration OR *cpe:2.3:o:cisco:content_services_switch_11500:7.20_(03.10)s:*:*:*:*:*:*:* OR *cpe:2.3:a:cisco:webns:7.20_(03.10)s:*:*:*:*:*:*:*
  • CPE Deprecation Remap by [email protected]

    Oct. 30, 2018

    Action Type Old Value New Value
    Changed CPE Configuration OR *cpe:2.3:o:cisco:content_services_switch_11500:7.10_(05.07)s:*:*:*:*:*:*:* OR *cpe:2.3:a:cisco:webns:7.10_(05.07)s:*:*:*:*:*:*:*
  • CPE Deprecation Remap by [email protected]

    Oct. 30, 2018

    Action Type Old Value New Value
    Changed CPE Configuration OR *cpe:2.3:a:f5:big-ip:9.0.2:*:*:*:*:*:*:* OR *cpe:2.3:o:f5:tmos:9.0.2:*:*:*:*:*:*:*
  • CPE Deprecation Remap by [email protected]

    Oct. 30, 2018

    Action Type Old Value New Value
    Changed CPE Configuration OR *cpe:2.3:a:f5:big-ip:9.0.1:*:*:*:*:*:*:* OR *cpe:2.3:o:f5:tmos:9.0.1:*:*:*:*:*:*:*
  • CPE Deprecation Remap by [email protected]

    Oct. 30, 2018

    Action Type Old Value New Value
    Changed CPE Configuration OR *cpe:2.3:a:f5:big-ip:9.0:*:*:*:*:*:*:* OR *cpe:2.3:o:f5:tmos:9.0:*:*:*:*:*:*:*
  • CPE Deprecation Remap by [email protected]

    Oct. 30, 2018

    Action Type Old Value New Value
    Changed CPE Configuration OR *cpe:2.3:a:f5:big-ip:4.6.2:*:*:*:*:*:*:* OR *cpe:2.3:o:f5:tmos:4.6.2:*:*:*:*:*:*:*
  • CPE Deprecation Remap by [email protected]

    Oct. 30, 2018

    Action Type Old Value New Value
    Changed CPE Configuration OR *cpe:2.3:a:f5:big-ip:4.6:*:*:*:*:*:*:* OR *cpe:2.3:o:f5:tmos:4.6:*:*:*:*:*:*:*
  • CPE Deprecation Remap by [email protected]

    Oct. 30, 2018

    Action Type Old Value New Value
    Changed CPE Configuration OR *cpe:2.3:o:cisco:sn_5420_storage_router:1.1(7):*:*:*:*:*:*:* OR *cpe:2.3:o:cisco:sn_5420_storage_router_firmware:1.1(7):*:*:*:*:*:*:*
  • CPE Deprecation Remap by [email protected]

    Oct. 30, 2018

    Action Type Old Value New Value
    Changed CPE Configuration OR *cpe:2.3:a:cisco:secure_access_control_server_solution_engine:3.3:*:*:*:*:*:*:* OR *cpe:2.3:a:cisco:secure_access_control_server:3.3:*:*:*:*:*:*:*
  • CPE Deprecation Remap by [email protected]

    Oct. 30, 2018

    Action Type Old Value New Value
    Changed CPE Configuration OR *cpe:2.3:o:cisco:content_services_switch_11500:7.30_(00.09)s:*:*:*:*:*:*:* OR *cpe:2.3:a:cisco:webns:7.30_(00.09)s:*:*:*:*:*:*:*
  • CPE Deprecation Remap by [email protected]

    Oct. 30, 2018

    Action Type Old Value New Value
    Changed CPE Configuration OR *cpe:2.3:a:f5:big-ip:4.5.10:*:*:*:*:*:*:* OR *cpe:2.3:o:f5:tmos:4.5.10:*:*:*:*:*:*:*
  • CPE Deprecation Remap by [email protected]

    Oct. 30, 2018

    Action Type Old Value New Value
    Changed CPE Configuration OR *cpe:2.3:a:f5:big-ip:4.5:*:*:*:*:*:*:* OR *cpe:2.3:o:f5:tmos:4.5:*:*:*:*:*:*:*
  • CPE Deprecation Remap by [email protected]

    Oct. 30, 2018

    Action Type Old Value New Value
    Changed CPE Configuration OR *cpe:2.3:a:f5:big-ip:4.4:*:*:*:*:*:*:* OR *cpe:2.3:o:f5:tmos:4.4:*:*:*:*:*:*:*
  • CPE Deprecation Remap by [email protected]

    Oct. 30, 2018

    Action Type Old Value New Value
    Changed CPE Configuration OR *cpe:2.3:a:f5:big-ip:4.3:*:*:*:*:*:*:* OR *cpe:2.3:o:f5:tmos:4.3:*:*:*:*:*:*:*
  • CPE Deprecation Remap by [email protected]

    Oct. 30, 2018

    Action Type Old Value New Value
    Changed CPE Configuration OR *cpe:2.3:o:cisco:sn_5420_storage_router:1.1(2):*:*:*:*:*:*:* OR *cpe:2.3:o:cisco:sn_5420_storage_router_firmware:1.1(2):*:*:*:*:*:*:*
  • CVE Modified by [email protected]

    Jul. 11, 2017

    Action Type Old Value New Value
    Removed Reference http://xforce.iss.net/xforce/xfdb/20635 [No Types Assigned]
    Added Reference https://exchange.xforce.ibmcloud.com/vulnerabilities/20635 [No Types Assigned]
  • Initial Analysis by [email protected]

    May. 31, 2005

    Action Type Old Value New Value
EPSS is a daily estimate of the probability of exploitation activity being observed over the next 30 days. Following chart shows the EPSS score history of the vulnerability.
CWE - Common Weakness Enumeration

While CVE identifies specific instances of vulnerabilities, CWE categorizes the common flaws or weaknesses that can lead to vulnerabilities. CVE-2005-0356 is associated with the following CWEs:

Common Attack Pattern Enumeration and Classification (CAPEC)

Common Attack Pattern Enumeration and Classification (CAPEC) stores attack patterns, which are descriptions of the common attributes and approaches employed by adversaries to exploit the CVE-2005-0356 weaknesses.

Exploit Prediction

EPSS is a daily estimate of the probability of exploitation activity being observed over the next 30 days.

93.08 }} -1.08%

score

0.99028

percentile

CVSS2 - Vulnerability Scoring System
Access Vector
Access Complexity
Authentication
Confidentiality
Integrity
Availability
: