漏洞标题
N/A
漏洞描述信息
一个未指明的 Fortinet 产品(可能是 Fortinet28),可能通过“小同步 flood”攻击 SMTP 端口(TCP 端口25),在发送数据包时导致拒绝服务。观察发现,在发送数据包之间有10微秒的延迟。注意:后续帖子认为一个保护功能触发了 RST。
CVSS信息
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
漏洞类别
N/A
漏洞标题
N/A
漏洞描述信息
An unspecified Fortinet product, possibly Fortinet28, allows remote attackers to cause a denial of service via a "small synflood" to the SMTP port (TCP port 25), as demonstrated by a 10-microsecond wait between sending packets. NOTE: this issue has been disputed in followup posts that suggest that a protection feature is triggering a RST.
CVSS信息
N/A
漏洞类别
N/A
漏洞标题
Fortinet 拒绝服务攻击漏洞
漏洞描述信息
未明的Fortinet产品,可能是Fortinet28,允许远程攻击者借助于对SMTP端口(TCP端口号25)的"小型同步攻击"造成拒绝服务,如发送一个数据包后,等待10微秒后,再发送下一个数据包。
CVSS信息
N/A
漏洞类别
授权问题