Denial of Service Vulnerability in ICMP Path MTU Discovery on Various UNIX Systems
CVE-2001-0323

Currently unrated

Key Information:

Vendor: Various UNIX vendors
Status: ICMP Path MTU Discovery
Vendor: CVE Published:; 2 June 2001

🔔 Create Various UNIX vendors Vulnerability Alert

What is CVE-2001-0323?

The ICMP path MTU discovery feature in multiple UNIX-based systems is susceptible to a denial of service attack. Attackers can exploit this vulnerability by sending specially crafted ICMP packets that spoof 'ICMP Fragmentation needed but Don't Fragment (DF) set' messages. This can lead to a situation where one host inadvertently reduces its Maximum Transmission Unit (MTU) when communicating with another host, resulting in disrupted network communication and service unavailability.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/5975

vdb-entryx_refsource_XF

http://www.oracle.com/technetwork/topics/security/cpujul2...

x_refsource_CONFIRM

http://marc.info/?l=bugtraq&m=97958349623450&w=2

mailing-listx_refsource_BUGTRAQ

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 2, 2001
Vulnerability Reserved
Apr 4, 2001