A improper neutralization of special elements used in an os command (‘os command injection’) in Fortinet FortiIsolator version 1.0.0, FortiIsolator version 1.1.0, FortiIsolator version 1.2.0 through 1.2.2, FortiIsolator version 2.0.0 through 2.0.1, FortiIsolator version 2.1.0 through 2.1.2, FortiIsolator version 2.2.0, FortiIsolator version 2.3.0 through 2.3.4 allows attacker to execute arbitrary OS commands in the underlying shell via specially crafted input parameters.

Read More

In Microchip MPLAB Net 3.6.1, TCP ISNs are improperly random.

Read More

In PicoTCP 1.7.0, TCP ISNs are improperly random.

Read More

In Contiki 4.5, TCP ISNs are improperly random.

Read More

In FNET 4.6.3, TCP ISNs are improperly random.

Read More

In Oryx CycloneTCP 1.9.6, TCP ISNs are improperly random.

Read More

In Silicon Labs uC/TCP-IP 3.6.0, TCP ISNs are improperly random.

Read More

An issue was discovered in Ethernut Nut/OS 5.1. The code that generates Initial Sequence Numbers (ISNs) for TCP connections derives the ISN from an insufficiently random source. As a result, an attacker may be able to determine the ISN of current and future TCP connections and either hijack existing ones or spoof future ones. While the ISN generator seems to adhere to RFC 793 (where a global 32-bit counter is incremented roughly every 4 microseconds), proper ISN generation should aim to follow at least the specifications outlined in RFC 6528.

Read More