Eaton Cooper Power Systems ProView 4.0 and 5.0 before 5.0 11 on Form 6 controls and Idea and IdeaPLUS relays generates TCP initial sequence number (ISN) values linearly, which makes it easier for remote attackers to spoof TCP sessions by predicting an ISN value.
References
Link | Resource |
---|---|
http://www.securityfocus.com/bid/75936 | |
https://ics-cert.us-cert.gov/advisories/ICSA-15-006-01 | Third Party Advisory US Government Resource |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: icscert
Published: 2015-07-20T01:00:00
Updated: 2016-11-25T19:57:01
Reserved: 2014-12-02T00:00:00
Link: CVE-2014-9196
JSON object: View
NVD Information
Status : Modified
Published: 2015-07-20T01:59:01.113
Modified: 2016-11-28T19:13:44.760
Link: CVE-2014-9196
JSON object: View
Redhat Information
No data.
CWE