1005
Views
0
Helpful
1
Replies
Predictable TCP Initial Sequence Numbers Vulnerability
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
09-02-2023 09:44 AM - edited 09-02-2023 10:10 AM
Hello Experts,
Any idea on how to address the subject vulnerability is cisco routers, where I have observed the routers with latest recommended software were also affected.
Labels:
1 Reply 1
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
09-02-2023 02:31 PM
TCP sequence number randomization was supposed to have been addressed more than 20 years ago:
https://www.cisco.com/c/en/us/support/docs/csa/cisco-sa-20010301-ios-tcp-isn-random.html
If your findings show predictability, you might contact Cisco's PSIRT with your observations: psirt@cisco.com
Disclaimers: I am long in CSCO. Bad answers are my own fault as they are not AI generated.
