• 공개일 : 2009-09-09
• 변경일 : 2011-12-21

• 위험도: 7.8
• 액세스 벡터 : NETWORK
• 액세스 복잡성 : 낮음
• 인증 : 없음
• 기밀성 영향 : 없음
• 무결성 영향 : 없음
• 가용성 영향 : 전체
• 출처 : http://nvd.nist.gov
• 공개일 : 2009-09-10

Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista Gold, SP1, and SP2, and Server 2008 Gold and SP2 allow remote attackers to cause a denial of service (TCP outage) via a series of TCP sessions that have pending data and a (1) small or (2) zero receive window size, and remain in the FIN-WAIT-1 or FIN-WAIT-2 state indefinitely, aka "TCP/IP Orphaned Connections Vulnerability."

• CERT, TA09-251A
• MS, MS09-048
• BID, 36269
• BUGTRAQ, 20090909 TCP/IP Orphaned Connections Vulnerability
• MISC, http://www.recurity-labs.com/content/pub/Microsoft_Windows_CVE-2009-1926
• OSVDB, 57797

• microsoft windows_xp
• microsoft windows_vista x64
• microsoft windows 2000
• microsoft windows_vista x64
• microsoft windows_vista - x64
• microsoft windows_server_2008 - x32
• microsoft windows_server_2008 - x64
• microsoft windows_vista -
• microsoft windows_vista
• microsoft windows_server_2008 - x64
• microsoft windows_server_2008 - x32
• microsoft windows_xp
• microsoft windows_server_2008 itanium
• microsoft windows_server_2003 itanium
• microsoft windows_vista -
• microsoft windows_server_2008 - itanium
• microsoft windows_xp professional
• microsoft windows_server_2003 x64
• microsoft windows_server_2003