LinuxQuestions.org

LinuxQuestions.org (/questions/)
-   Linux - Security (https://www.linuxquestions.org/questions/linux-security-4/)
-   -   How to solve TCP sequence number approximation vulnerability issue (https://www.linuxquestions.org/questions/linux-security-4/how-to-solve-tcp-sequence-number-approximation-vulnerability-issue-4175459286/)

5883 04-23-2013 09:21 AM
How to solve TCP sequence number approximation vulnerability issue
 
Hi,

we use a software tool (rapid7 nexporse) to scan the web server in our linux board, kernel 2.6.39.4.
It says we have TCP sequence number approximation vulnerability issue.

i did search but found nothing so far.
So how to resolve this please ?

Many thanks !

acid_kewpie 04-23-2013 09:28 AM
well you don't say what distro, but Redhat are happy to NOT fix this... https://access.redhat.com/security/cve/CVE-2004-0230 and Debian also don't care - https://security-tracker.debian.org/.../CVE-2004-0230

5883 04-23-2013 09:39 AM
interesting, this is embedded system, we customize root file system ourselves.

Quote:
Originally Posted by acid_kewpie (Post 4937235)
well you don't say what distro, but Redhat are happy to NOT fix this... https://access.redhat.com/security/cve/CVE-2004-0230 and Debian also don't care - https://security-tracker.debian.org/.../CVE-2004-0230

acid_kewpie 04-23-2013 09:42 AM
well if you want to fix an insignificant issue, the kernel source is there waiting for you.


All times are GMT -5. The time now is 03:43 AM.