Vulnerabilities in multiple TCP/IP stacks in which ISNs (Initial Sequence Numbers within TCP connections) are improperly generated, leaving TCP connections of a device open to attacks.

Forescout researchers analyzed 11 total stacks:

• uIP,
• FNET,
• picoTCP,
• Nut/Net,
• lwIP,
• cycloneTCP,
• uC/TCP-IP,
• MPLAB Net,
• TI-NDKTCPIP,
• Nanostack,
• Nucleus NET.

We found improperly generated ISNs in 9 of the 11 stacks analyzed.

This type of vulnerability has been used historically to break into general-purpose computers (known as the « Mitnick attack »). What makes this finding different is the stacks are primarily used in embedded devices, potentially widening their impact.

#CYBER #THREATS #IOT #NETWORK

https://www.forescout.com/company/blog/numberjack-forescout-research-labs-finds-nine-isn-generation-vulnerabilities-affecting-tcpip-stacks/