Signature Detail

Short Name	TCP:OPTERR:SHORT-READ
Severity	Critical
Recommended	No
Recommended Action	Drop Packet
Category	TCP
Release Date	2003/04/22
Update Number	1213
Supported Platforms	idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+

TCP: Options Error Option Not Fully Supplied

This protocol anomaly triggers when it detects option data that runs out of the options buffer. Because this can indicate an exploit attempt, it is recommended to drop these packets.

Extended Description

This condition may be the result of a network configuration error. It could also indicate that an attempted denial of service attack is underway.

References

URL: http://www.net-security.org/advisory.php?id=3515
URL: http://www.colasoft.com/resources/protocol.php?id=TCP

Signature Detail

Short Name

Severity

Recommended

Recommended Action

Category

Release Date

Update Number

Supported Platforms

TCP: Options Error Option Not Fully Supplied

Extended Description

References