Race Condition Vulnerability in NetBSD TCP Servers
CVE-1999-0396

Currently unrated

Key Information:

Vendor: Netbsd
Status: Netbsd; OpenBSD
Vendor: CVE Published:; 17 February 1999

What is CVE-1999-0396?

A race condition exists between the select() and accept() system calls within the TCP server implementation in NetBSD. This vulnerability can be exploited by remote attackers to trigger a denial of service, effectively causing the server to become unresponsive. By manipulating the timing of these calls, an attacker can disrupt normal service operations, leading to potential downtime and loss of availability for users.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-...

x_refsource_MISC

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability Reserved
Jun 7, 1999
Vulnerability published
Feb 17, 1999

CVE-1999-0396 Data

JSON

Netbsd

What is CVE-1999-0396?

References

Timeline