> Can any security experts who are aware of this issue shed some light on this?
My understanding was that this particular CERT was due to a
predictable source port. So the TXID being random is good, but the
source port being non-random (or pseudo-random) is the problem.
More details are in the CERT/CVE itself.
Josh
Received on 2008-07-14