CVE-1999-0305

Summary

CVE-1999-0305 is a vulnerability affecting the system configuration control (sysctl) facility in older versions of OpenBSD (2.2 and earlier) and FreeBSD (2.2.5 and earlier). This issue enables remote attackers to spoof TCP connections by not properly restricting source-routed packets, even when the dosourceroute or forwarding variables are set to restrict them. This vulnerability poses a significant risk as it allows unauthorized access and manipulation of network traffic. Attackers can exploit this to conduct various malicious activities, including data theft, denial-of-service attacks, and man-in-the-middle attacks. System administrators are advised to update their operating systems to the latest versions to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.