Name:
tcp_src_session
Released Date:
Sep 11 2006
Severity:
critical

FortiGuard Center > Vulnerability Encyclopedia


In-Depth Analysis

Description

It indicates abnormal large number of sessions were established by a single source.

Malicious activities, especially DoS (Denial-of-Service) attacks usually made the target system increase the demand of bandwidth and server resources, thereby slow down or even crash the system. Abnormal number of sessions established by a single source usually indicates that malicious traffics are coming from the source.

 
Impact
The system demand of bandwidth and server resources is significantly increased by the source
 
Affected Products
Any unprotected system that is connected to the Internet and provides TCP/IP services is vulnerable
Aliases
tcp_src_session
References
http://www.niser.org.my/resources/dos_attack.pdf
Recommended Actions

Examine the source IP host for the cause of the traffic.

 
 
SITE MAP  |  LEGAL NOTICES

      © 2003 FORTINET INC. ALL RIGHTS RESERVED