PT-2005-4685 · Microsoft · Windows 2003+1

Published

2005-12-01

Updated

2019-04-30

CVE-2005-3945

CVSS v2.0

7.8

High

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions Microsoft Windows 2003 versions prior to SP1 Microsoft Windows 2000 versions prior to SP4 with Update Roll-up

Description The issue concerns the SynAttackProtect protection mechanism, which uses a hash of predictable data. This allows remote attackers to cause a denial of service by flooding the system with SYN packets that produce identical hash values, slowing down hash table lookups.

Recommendations For Microsoft Windows 2003 versions prior to SP1, apply Service Pack 1 to resolve the issue. For Microsoft Windows 2000 versions prior to SP4 with Update Roll-up, apply Service Pack 4 with Update Roll-up to resolve the issue.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2005-3945

Affected Products

Windows 2000

Windows 2003

PT-2005-4685 · Microsoft · Windows 2003+1

CVE-2005-3945

Related Identifiers

Affected Products

References · 3