CVE-2001-1244

Currently unrated

Key Information:

Vendor: Microsoft
Status: Windows Nt; OpenBSD; HP-ux; Netbsd
Vendor: CVE Published:; 7 July 2001

Summary

Multiple TCP implementations could allow remote attackers to cause a denial of service (bandwidth and CPU exhaustion) by setting the maximum segment size (MSS) to a very small number and requesting large amounts of data, which generates more packets with less TCP-level data that amplify network traffic and consume more server CPU to process.

References

http://www.securityfocus.com/archive/1/195457

mailing-listx_refsource_BUGTRAQ

https://exchange.xforce.ibmcloud.com/vulnerabilities/6824

vdb-entryx_refsource_XF

http://www.securityfocus.com/bid/2997

vdb-entryx_refsource_BID

Timeline

Vulnerability Reserved
May 1, 2002
Vulnerability published
Jul 7, 2001

Collectors

NVD DatabaseMitre Database