CVE-2008-4609 vulnerability in Microsoft and Other Products
Published on October 20, 2008

The TCP implementation in (1) Linux, (2) platforms based on BSD Unix, (3) Microsoft Windows, (4) Cisco products, and probably other operating systems allows remote attackers to cause a denial of service (connection queue exhaustion) via multiple vectors that manipulate information in the TCP state table, as demonstrated by sockstress.

Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory NVD

Products Associated with CVE-2008-4609

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2008-4609 are published in these products:

Microsoft Windows 2000

Microsoft Windows 2003 Server

Microsoft Windows Server 2003

Microsoft Windows Nt

Microsoft Windows Ce

Microsoft Windows 98

Microsoft Windows 95

Microsoft Windows Me

Microsoft Windows XP

Cisco Internetwork Operating System (IOS)

Microsoft Windows Server 2008

Microsoft Windows Vista

Microsoft Windows Mobile

Microsoft Windows 98se

Microsoft Windows 9x

Linux Kernel

Microsoft Windows 286

Microsoft Windows 386

Midnightbsd

FreeBSD

Bsdi Bsd Os

Netbsd

OpenBSD

Bsd

Dragonflybsd

Netbsd Current

Trustedbsd

Oracle Solaris

Exploit Probability

EPSS

1.88%

Percentile

82.86%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2008-4609 vulnerability in Microsoft and Other ProductsPublished on October 20, 2008

Products Associated with CVE-2008-4609

Exploit Probability

CVE-2008-4609 vulnerability in Microsoft and Other Products
Published on October 20, 2008