CVE-2008-3612 Information

Description

The Networking subsystem in Apple iPod touch 2.0 through 2.0.2 and iPhone 2.0 through 2.0.2 uses predictable TCP initial sequence numbers which allows remote attackers to spoof or hijack a TCP connection.

Reference

http://lists.apple.com/archives/security-announce//2008/Sep/msg00003.html http://lists.apple.com/archives/security-announce//2008/Sep/msg00004.html http://secunia.com/advisories/31823 http://secunia.com/advisories/31900 http://support.apple.com/kb/HT3026 http://support.apple.com/kb/HT3129 http://www.securityfocus.com/bid/31092 http://www.securitytracker.com/id?1020848 http://www.vupen.com/english/advisories/2008/2525 http://www.vupen.com/english/advisories/2008/2558