HERT Advisory #3 - The way FreeBSD handles random sequence number incrementing is weak. With 3 consecutive random increments captured from the responses of 4 SYN packets sent to the target, an attacker can rebuild the random state of the remote machine, and predict the next sequence number. Includes proof of concept code.
4fdde88e38ec9b6ff465d28188c0d4ae5779697d0340aa76bb684473eced5ca5
hert.00001.solaris.lpstat
2cfab1b1f789659cbf067e4780b7de241682262d9494756d82b9b08045af3166
hert.0002.lsof.4-40
357f196aeafa985917c80f440fee72f7701107924999e647b113d2b33b7e955d