VULHUB ™

HP Tru64 Unix uses predictable initial TCP sequence numbers (ISN)s. According to HP, a denial of service attack is possible. Administrators should keep in mind that TCP implementations with weak ISN generation are typically exploited to perform man-in-the-middle attacks and session hijacking.

HP Tru64 Unix uses predictable initial TCP sequence numbers (ISN)s. According to HP, a denial of service attack is possible. Administrators should keep in mind that TCP implementations with weak ISN generation are typically exploited to perform man-in-the-middle attacks and session hijacking.