F5 Networks BIG-IP : Sockstress DoS tool vulnerability (SOL10509)
High Nessus Plugin ID 78121
SynopsisThe remote device is missing a vendor-supplied security patch.
DescriptionSockstress DoS tool CVE-2008-4609. The TCP implementation in (1) Linux, (2) platforms based on BSD Unix, (3) Microsoft Windows, (4) Cisco products, and probably other operating systems allows remote attackers to cause a denial of service (connection queue exhaustion) via multiple vectors that manipulate information in the TCP state table, as demonstrated by sockstress.
SolutionUpgrade to one of the non-vulnerable versions listed in the F5 Solution SOL10509.