Manualshelf

Is your e3000 Environment Secure? Homestead security

ManualsBrandsHP ManualsSoftwareMPE/iX 7.5 Operating System
51525354555657585960
page 55April 24, 2003
Is Your Homestead Secure? - Solution Symposium West
MPE TCP vulnerable to sequence number
spoofing
MPE TCP sequence numbers are predictable and can
enable a hacker to impersonate your e3000 in order to
exploit trust relationships
For more info on TCP sequence spoofing, see:
http://www.sans.org/rr/threats/intro_spoofing.php
Patches are available to randomize MPE initial TCP
sequence numbers:
6.5: NSTGDV3 (LD)
7.0: NSTGDV5 (GR)
7.5: NSTGDW6 (LD)