CVE-1999-0104

CVSS 2.0 Score 5.0 of 10 (medium)

Details

Published Dec 16, 1997
Updated: Nov 20, 2024

Summary

CVE-1999-0104 represents a Teardrop-2 denial of service attack variant. This vulnerability targets IP networks by fragmenting packets in a malicious way, causing systems to become unresponsive or crash. The attack works by exploiting the lack of validation for the size of the last fragment in IP packets, resulting in buffer overflows and subsequent system instability. This issue poses a significant threat to IP-based networks, potentially leading to widespread disruptions if not promptly addressed.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • Microsoft Windows NT
  • HP-UX
  • HP-UX family of operating systems
  • SunOS
  • HP-UX 11.11

Affected Vendors

  • HP
  • Oracle Corp
  • Microsoft