CVE-2005-4316
published 2005-12-17CVE-2005-4316: HP-UX B.11.00, B.11.04, B.11.11, and B.11.23 allows remote attackers to cause a denial of service via a "Rose Attack" that involves sending a subset of small…
PriorityP338high7.8CVSS 2.0
AVNACLAuNCNINAC
EXPLOIT
EPSS
6.59%
93.0th percentile
HP-UX B.11.00, B.11.04, B.11.11, and B.11.23 allows remote attackers to cause a denial of service via a "Rose Attack" that involves sending a subset of small IP fragments that do not form a complete, larger packet.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| hp | hp-ux | — | — |
| hp | hp-ux | — | — |
| hp | hp-ux | — | — |
| hp | hp-ux | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
Microsoft Windows XP - TCP Packet Fragmentation Handling Denial of Service (3)
exploitdb·2004-09-27
CVE-2005-4316 Microsoft Windows XP - TCP Packet Fragmentation Handling Denial of Service (3)
Microsoft Windows XP - TCP Packet Fragmentation Handling Denial of Service (3)
---
// source: https://www.securityfocus.com/bid/11258/info
Multiple vendor implementations of the TCP stack are reported prone to a remote denial-of-service vulnerability.
The issue is reported to present itself due to inefficiencies present when handling fragmented TCP packets.
The discoverer of this issue has dubbed the attack style the "New Dawn attack"; it is a variation of a previously reported attack that was named the "Rose Attack".
A remote attacker may exploit this vulnerability to deny service to an affected computer.
Microsoft Windows 2000/XP, Linux kernel 2.4 tree, and undisclosed Cisco systems are reported prone to this vulnerability; other products may also be affected.
/*----------------
Exploit-DB
Microsoft Windows XP - TCP Packet Fragmentation Handling Denial of Service (2)
exploitdb·2004-09-27
CVE-2005-4316 Microsoft Windows XP - TCP Packet Fragmentation Handling Denial of Service (2)
Microsoft Windows XP - TCP Packet Fragmentation Handling Denial of Service (2)
---
// source: https://www.securityfocus.com/bid/11258/info
Multiple vendor implementations of the TCP stack are reported prone to a remote denial-of-service vulnerability.
The issue is reported to present itself due to inefficiencies present when handling fragmented TCP packets.
The discoverer of this issue has dubbed the attack style the "New Dawn attack"; it is a variation of a previously reported attack that was named the "Rose Attack".
A remote attacker may exploit this vulnerability to deny service to an affected computer.
Microsoft Windows 2000/XP, Linux kernel 2.4 tree, and undisclosed Cisco systems are reported prone to this vulnerability; other products may also be affected.
/***
ROSE attack (c
Exploit-DB
Microsoft Windows XP - TCP Packet Fragmentation Handling Denial of Service (1)
exploitdb·2004-09-27
CVE-2005-4316 Microsoft Windows XP - TCP Packet Fragmentation Handling Denial of Service (1)
Microsoft Windows XP - TCP Packet Fragmentation Handling Denial of Service (1)
---
// source: https://www.securityfocus.com/bid/11258/info
Multiple vendor implementations of the TCP stack are reported prone to a remote denial-of-service vulnerability.
The issue is reported to present itself due to inefficiencies present when handling fragmented TCP packets.
The discoverer of this issue has dubbed the attack style the "New Dawn attack"; it is a variation of a previously reported attack that was named the "Rose Attack".
A remote attacker may exploit this vulnerability to deny service to an affected computer.
Microsoft Windows 2000/XP, Linux kernel 2.4 tree, and undisclosed Cisco systems are reported prone to this vulnerability; other products may also be affected.
/***
ROSE attack (
Exploit-DB
Microsoft Windows XP - TCP Packet Fragmentation Handling Denial of Service (4)
exploitdb·2004-09-27
CVE-2005-4316 Microsoft Windows XP - TCP Packet Fragmentation Handling Denial of Service (4)
Microsoft Windows XP - TCP Packet Fragmentation Handling Denial of Service (4)
---
// source: https://www.securityfocus.com/bid/11258/info
Multiple vendor implementations of the TCP stack are reported prone to a remote denial-of-service vulnerability.
The issue is reported to present itself due to inefficiencies present when handling fragmented TCP packets.
The discoverer of this issue has dubbed the attack style the "New Dawn attack"; it is a variation of a previously reported attack that was named the "Rose Attack".
A remote attacker may exploit this vulnerability to deny service to an affected computer.
Microsoft Windows 2000/XP, Linux kernel 2.4 tree, and undisclosed Cisco systems are reported prone to this vulnerability; other products may also be affected.
/*-----------------
No writeups or analysis indexed.
http://secunia.com/advisories/18082/http://secunia.com/advisories/19086http://securitytracker.com/id?1015361http://support.avaya.com/elmodocs2/security/ASA-2006-062.htmhttp://www.securityfocus.com/archive/1/376490http://www.securityfocus.com/archive/1/419594/100/0/threadedhttp://www.securityfocus.com/bid/11258http://www.vupen.com/english/advisories/2005/2945https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5760http://secunia.com/advisories/18082/http://secunia.com/advisories/19086http://securitytracker.com/id?1015361http://support.avaya.com/elmodocs2/security/ASA-2006-062.htmhttp://www.securityfocus.com/archive/1/376490http://www.securityfocus.com/archive/1/419594/100/0/threadedhttp://www.securityfocus.com/bid/11258http://www.vupen.com/english/advisories/2005/2945https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5760
2005-12-17
Published