First published: Wed Jun 14 2023(Updated: )
Windows 7 is vulnerable to a full blind TCP/IP hijacking attack. The vulnerability exists in Windows 7 (any Windows until Windows 8) and in any implementation of TCP/IP, which is vulnerable to the Idle scan attack (including many IoT devices). NOTE: The vendor considers this a low severity issue.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Microsoft Windows 7 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2023-34367 is a vulnerability in Windows 7 that allows for a full blind TCP/IP hijacking attack.
Windows 7 (any version until Windows 8) is affected by CVE-2023-34367.
The vendor considers CVE-2023-34367 a low severity issue, but it is assigned a severity rating of 6.5.
CVE-2023-34367 can be exploited through a full blind TCP/IP hijacking attack.
There is no known fix for CVE-2023-34367, as Windows 7 is no longer supported by Microsoft.