Skip to main content

Multiple TCP/IP stack flaws could leave millions of devices open to attack

posted onFebruary 11, 2021
by l33tdawg
IT Pro
Credit: IT Pro

Security researchers have discovered vulnerabilities in multiple TCP/IP stacks that affect millions of internet-connected devices and could enable hackers to hijack them.

Researchers at Forescout, a cyber security firm, have uncovered nine exploits, dubbed “Number:jack,“ in multiple TCP/IP stacks that improperly generate Initial Sequence Numbers (ISNs) within TCP connections. This meant the flaws left devices’ TCP connections open to attacks. ISNs ensure that every TCP connection between two devices is unique and that there are no collisions so that third parties cannot interfere with an ongoing connection.

The stacks are susceptible to the so-called “Mitnick attack,” named after legendary computer hacker Kevin Mitnick.

Source

Tags

Security

You May Also Like

Recent News

Tuesday, November 19th

Friday, November 8th

Friday, November 1st

Tuesday, July 9th

Wednesday, July 3rd

Friday, June 28th

Thursday, June 27th

Thursday, June 13th

Wednesday, June 12th

Tuesday, June 11th