Vulnerability Details : CVE-2008-4609

The TCP implementation in (1) Linux, (2) platforms based on BSD Unix, (3) Microsoft Windows, (4) Cisco products, and probably other operating systems allows remote attackers to cause a denial of service (connection queue exhaustion) via multiple vectors that manipulate information in the TCP state table, as demonstrated by sockstress.
Vulnerability category: Denial of service
Published 2008-10-20 17:59:26
Updated 2022-12-14 16:40:36
Source MITRE
View at NVD,

Exploit prediction scoring system (EPSS) score for CVE-2008-4609

Probability of exploitation activity in the next 30 days: 5.05%

Percentile, the proportion of vulnerabilities that are scored at or less: ~ 92 % EPSS Score History EPSS FAQ

CVSS scores for CVE-2008-4609

Base Score Base Severity CVSS Vector Exploitability Score Impact Score Source
[email protected]

CWE ids for CVE-2008-4609

Vendor statements for CVE-2008-4609