CVE-2005-3774

N/A Unknown

Published: November 23, 2005 Modified: April 16, 2026

Description

Cisco PIX 6.3 and 7.0 allows remote attackers to cause a denial of service (blocked new connections) via spoofed TCP packets that cause the PIX to create embryonic connections that that would not produce a valid connection with the end system, including (1) SYN packets with invalid checksums, which do not result in a RST; or, from an external interface, (2) one byte of "meaningless data," or (3) a TTL that is one less than needed to reach the internal destination.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

Login to generate AI explanation

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://lists.grok.org.uk/pipermail/full-disclosure/2005-November/038971.html

Source: cve@mitre.org

Vendor Advisory

http://lists.grok.org.uk/pipermail/full-disclosure/2005-November/038983.html

Source: cve@mitre.org

http://secunia.com/advisories/17670

Source: cve@mitre.org

http://securitytracker.com/id?1015256

Source: cve@mitre.org

http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_security_notice09186a0080624a37.html

Source: cve@mitre.org

http://www.cisco.com/warp/public/707/cisco-response-20051122-pix.shtml

Source: cve@mitre.org

http://www.kb.cert.org/vuls/id/853540

Source: cve@mitre.org

US Government Resource

http://www.osvdb.org/24140

Source: cve@mitre.org

http://www.securityfocus.com/archive/1/417458/30/0/threaded

Source: cve@mitre.org

http://www.securityfocus.com/archive/1/426989/100/0/threaded

Source: cve@mitre.org

http://www.securityfocus.com/archive/1/426991/100/0/threaded

Source: cve@mitre.org

http://www.securityfocus.com/archive/1/427041/100/0/threaded

Source: cve@mitre.org

http://www.securityfocus.com/bid/15525

Source: cve@mitre.org

http://www.vupen.com/english/advisories/2005/2546

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/25077

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/25079

Source: cve@mitre.org

http://lists.grok.org.uk/pipermail/full-disclosure/2005-November/038971.html

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://lists.grok.org.uk/pipermail/full-disclosure/2005-November/038983.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/17670

Source: af854a3a-2127-422b-91ae-364da2661108

http://securitytracker.com/id?1015256

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_security_notice09186a0080624a37.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.cisco.com/warp/public/707/cisco-response-20051122-pix.shtml

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.kb.cert.org/vuls/id/853540

Source: af854a3a-2127-422b-91ae-364da2661108

US Government Resource

http://www.osvdb.org/24140

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/archive/1/417458/30/0/threaded

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/archive/1/426989/100/0/threaded

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/archive/1/426991/100/0/threaded

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/archive/1/427041/100/0/threaded

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/15525

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.vupen.com/english/advisories/2005/2546

Source: af854a3a-2127-422b-91ae-364da2661108

https://exchange.xforce.ibmcloud.com/vulnerabilities/25077

Source: af854a3a-2127-422b-91ae-364da2661108

https://exchange.xforce.ibmcloud.com/vulnerabilities/25079

Source: af854a3a-2127-422b-91ae-364da2661108

32 reference(s) from NVD

Quick Stats

CVSS v3 Score

N/A / 10.0

EPSS (Exploit Probability)

35.1%

97th percentile

Exploitation Status

Not in CISA KEV

Affected Vendors

cisco