Test ID:	1.3.6.1.4.1.25623.1.0.56240
Category:	FreeBSD Local Security Checks
Title:	FreeBSD Security Advisory (FreeBSD-SA-06:08.sack.asc)
Summary:	The remote host is missing an update to the system; as announced in the referenced advisory FreeBSD-SA-06:08.sack.asc
Description:	Summary: The remote host is missing an update to the system as announced in the referenced advisory FreeBSD-SA-06:08.sack.asc Vulnerability Insight: SACK (Selective Acknowledgement) is an extension to the TCP/IP protocol that allows hosts to acknowledge the receipt of some, but not all, of the packets sent, thereby reducing the cost of retransmissions. When insufficient memory is available to handle an incoming selective acknowledgement, the TCP/IP stack may enter an infinite loop. Solution: Upgrade your system to the appropriate stable release or security branch dated after the correction date. CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2006-0433 BugTraq ID: 16466 http://www.securityfocus.com/bid/16466 FreeBSD Security Advisory: FreeBSD-SA-06:08 ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-06:08.sack.asc http://www.osvdb.org/22861 http://securitytracker.com/id?1015566 http://secunia.com/advisories/18696 http://securityreason.com/securityalert/399 http://www.vupen.com/english/advisories/2006/0409 XForce ISS Database: bsd-sack-handling-dos(24453) https://exchange.xforce.ibmcloud.com/vulnerabilities/24453
Copyright	Copyright (C) 2008 E-Soft Inc.

This is only one of 146377 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.