CVE-2004-0230 Blind Reset Attack Using the RST/SYN Bit Fortinet PSIRT Advisories Fortinet PSIRT Contact: Website: https://fortiguard.fortinet.com/faq/psirt-contact FG-IR-16-039 Final 1 1 2020-05-20T00:00:00 Current version 2020-05-20T00:00:00 2020-05-20T00:00:00 TCP stacks that lack RFC 5961 3.2 & 4.2 support (or have it disabled at application level) may allow remote attackers to guess sequence numbers and cause a denial of service (connection loss) to persistent TCP connections by repeatedly injecting a TCP RST or SYN packet. Denial of service FortiAnalyzer version 5.2.0 through 5.2.9FortiAnalyzer version 6.0.0 through 6.0.11FortiAnalyzer version 6.2.0 through 6.2.3FortiAuthenticator version 5.5.0FortiAuthenticator version 6.0.0 through 6.0.5FortiAuthenticator version 6.2.0 through 6.2.1FortiManager version 5.2.0 through 5.2.9FortiManager version 6.0.0 through 6.0.11FortiManager version 6.2.0 through 6.2.3FortiOS version 5.2.0 through 5.2.8FortiOS version 5.4.0 through 5.4.1FortiWAN version 4.5.0 through 4.5.4FortiWLC version 8.4.0 through 8.4.8FortiWLC version 8.5.0 through 8.5.5FortiWLC version 8.6.0 Upgrade to FortiAnalyzer version 6.2.4 or aboveUpgrade to FortiAnalyzer version 6.4.0 or aboveUpgrade to FortiAuthenticator version 6.3.0 or aboveUpgrade to FortiAuthenticator version 6.0.6 or aboveUpgrade to FortiManager version 6.2.4 or aboveUpgrade to FortiManager version 6.4.0 or aboveUpgrade to FortiOS version 5.6.0 or aboveUpgrade to FortiOS version 5.4.2 or aboveUpgrade to FortiOS version 5.2.9 or aboveUpgrade to FortiWAN version 4.5.5 or aboveUpgrade to FortiWLC version 8.6.1 or aboveWorkaround:Restrict hosts that can connect to the GUI to trusted ones only, with the trusted host feature. https://fortiguard.fortinet.com/psirt/FG-IR-16-039 CVE-2004-0230 Blind Reset Attack Using the RST/SYN Bit The following issues reported by vulnerability scanners are directly linked to this issue: "TCP Sequence Number Approximation Based Denial of Service" "Blind Reset Attack Using the RST/SYN Bit" The following issues reported by vulnerability scanners are directly linked to this issue: "TCP Sequence Number Approximation Based Denial of Service" "Blind Reset Attack Using the RST/SYN Bit" CVE-2004-0230 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:U/RL:X/RC:X https://fortiguard.fortinet.com/psirt/FG-IR-16-039 CVE-2004-0230 Blind Reset Attack Using the RST/SYN Bit Reference> The following issues reported by vulnerability scanners are directly linked to this issue: "TCP Sequence Number Approximation Based Denial of Service" "Blind Reset Attack Using the RST/SYN Bit" The following issues reported by vulnerability scanners are directly linked to this issue: "TCP Sequence Number Approximation Based Denial of Service" "Blind Reset Attack Using the RST/SYN Bit"