Phase:A network intrusion detection system (IDS) does not properly handle packets that are sent out of order, allowing an attacker to escape detection.
References
Votes:Proposed (Monday, July 26, 1999)
Comments: ACCEPT(3) Baker, Armstrong, Northcutt | NOOP(1) Frech | REVIEWING(1) Christey
F7: Frech> Waiting for CIEL. | Christey> This is a design flaw, along with the other reported IDS | problems; at least reference Ptacek/Newsham's paper. | Christey> URL:http://www.robertgraham.com/mirror/Ptacek-Newsham-Evasion-98.html