CVE - CVE-2004-1060

CVE-ID
CVE-2004-1060	Learn more at National Vulnerability Database (NVD) • CVSS Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings • CPE Information
Description
Multiple TCP/IP and ICMP implementations, when using Path MTU (PMTU) discovery (PMTUD), allow remote attackers to cause a denial of service (network throughput reduction for TCP connections) via forged ICMP ("Fragmentation Needed and Don't Fragment was Set") packets with a low next-hop MTU value, aka the "Path MTU discovery attack." NOTE: CVE-2004-0790, CVE-2004-0791, and CVE-2004-1060 have been SPLIT based on different attacks; CVE-2005-0065, CVE-2005-0066, CVE-2005-0067, and CVE-2005-0068 are related identifiers that are SPLIT based on the underlying vulnerability. While CVE normally SPLITs based on vulnerability, the attack-based identifiers exist due to the variety and number of affected implementations and solutions that address the attacks instead of the underlying vulnerabilities.
References
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
BID:13124 URL:http://www.securityfocus.com/bid/13124 CISCO:20050412 Crafted ICMP Messages Can Cause Denial of Service URL:http://www.cisco.com/warp/public/707/cisco-sa-20050412-icmp.shtml HP:HPSBTU01210 URL:http://marc.info/?l=bugtraq&m=112861397904255&w=2 HP:HPSBUX01164 URL:http://www.securityfocus.com/archive/1/418882/100/0/threaded HP:SSRT4743 URL:http://marc.info/?l=bugtraq&m=112861397904255&w=2 HP:SSRT4884 URL:http://marc.info/?l=bugtraq&m=112861397904255&w=2 MISC:http://www.gont.com.ar/drafts/icmp-attacks-against-tcp.html MISC:http://www.uniras.gov.uk/niscc/docs/al-20050412-00308.html?lang=en MS:MS05-019 URL:https://docs.microsoft.com/en-us/security-updates/securitybulletins/2005/ms05-019 OVAL:oval:org.mitre.oval:def:181 URL:https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A181 OVAL:oval:org.mitre.oval:def:196 URL:https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A196 OVAL:oval:org.mitre.oval:def:2188 URL:https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2188 OVAL:oval:org.mitre.oval:def:3826 URL:https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A3826 OVAL:oval:org.mitre.oval:def:405 URL:https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A405 OVAL:oval:org.mitre.oval:def:5386 URL:https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5386 OVAL:oval:org.mitre.oval:def:651 URL:https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A651 OVAL:oval:org.mitre.oval:def:780 URL:https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A780 OVAL:oval:org.mitre.oval:def:899 URL:https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A899 SCO:SCOSA-2006.4 URL:ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2006.4/SCOSA-2006.4.txt SECUNIA:18317 URL:http://secunia.com/advisories/18317 SREASON:19 URL:http://securityreason.com/securityalert/19 SREASON:57 URL:http://securityreason.com/securityalert/57
Assigning CNA
MITRE Corporation
Date Record Created
20041123	Disclaimer: The record creation date may reflect when the CVE ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Assigned (20041123)
Votes (Legacy)

Comments (Legacy)

Proposed (Legacy)
N/A
This is an record on the CVE List, which provides common identifiers for publicly known cybersecurity vulnerabilities.
Search CVE Using Keywords: You can also search by reference using the CVE Reference Maps.
For More Information: CVE Request Web Form (select "Other" from dropdown)