Denial of Service Vulnerability in Teardrop-2 by Various Vendors
CVE-1999-0104

Currently unrated

Key Information:

Vendor: Microsoft
Status: Windows Nt; Sunos; Openlinux; Windows 95
Vendor: CVE Published:; 16 December 1997

Summary

Teardrop-2 is a variation of the original Teardrop attack, characterized by its ability to exploit flaws in the handling of fragmented IP packets by certain products. This vulnerability can lead to system instability and potential outages, allowing an attacker to cause a denial of service by sending specially crafted fragmented packets. The affected systems are susceptible to crashes or reduced functionality, highlighting the importance of prompt patching and network monitoring.

References

https://oval.cisecurity.org/repository/search/definition/...

vdb-entrysignaturex_refsource_OVAL

http://www.securityfocus.com/bid/80175

vdb-entryx_refsource_BID

Timeline

Vulnerability Reserved
Jun 7, 1999
Vulnerability published
Dec 16, 1997