Denial of Service Vulnerability in Various TCP/IP Stacks and Network Applications
CVE-2000-1039

Currently unrated

Key Information:

Vendor: Microsoft
Status: Windows Nt; Windows 98se; Windows 95; Windows Me
Vendor: CVE Published:; 9 January 2001

Summary

Various TCP/IP stacks and network applications are susceptible to a Denial of Service (DoS) attack, enabling remote attackers to overwhelm a target system by flooding it with TCP connection requests. This occurs when attackers manage to complete the TCP/IP handshake without maintaining connection state on their end, effectively exhausting the resources of the target system and rendering it unresponsive. The classification of this vulnerability falls under the NAPTHA category, which highlights critical concerns for network security across a wide range of products and implementations. System administrators are encouraged to stay informed and adopt mitigation strategies to protect their networks from such persistent threats.

References

http://www.cert.org/advisories/CA-2000-21.html

third-party-advisoryx_refsource_CERT

http://razor.bindview.com/publish/advisories/adv_NAPTHA.html

vendor-advisoryx_refsource_BINDVIEW

http://archives.neohapsis.com/archives/win2ksecadvice/200...

mailing-listx_refsource_WIN2KSEC

EPSS Score

38% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Jan 9, 2001
Vulnerability Reserved
Nov 28, 2000