Vulnerability Name:
CVE-1999-0016 (CCN-288)
Assigned:
1997-12-01
Published:
1997-12-01
Updated:
2008-09-09
Summary:
Land IP denial of service.
CVSS v3 Severity:
5.3 Medium
(CCN CVSS v3.1 Vector:
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
)
Exploitability Metrics:
Attack Vector (AV):
Network
Attack Complexity (AC):
Low
Privileges Required (PR):
None
User Interaction (UI):
None
Scope:
Scope (S):
Unchanged
Impact Metrics:
Confidentiality (C):
None
Integrity (I):
None
Availibility (A):
Low
CVSS v2 Severity:
5.0 Medium
(CVSS v2 Vector:
AV:N/AC:L/Au:N/C:N/I:N/A:P
)
Exploitability Metrics:
Access Vector (AV):
Network
Access Complexity (AC):
Low
Authentication (Au):
None
Impact Metrics:
Confidentiality (C):
None
Integrity (I):
None
Availibility (A):
Partial
5.0 Medium
(CCN CVSS v2 Vector:
AV:N/AC:L/Au:N/C:N/I:N/A:P
)
Exploitability Metrics:
Access Vector (AV):
Network
Access Complexity (AC):
Low
Athentication (Au):
None
Impact Metrics:
Confidentiality (C):
None
Integrity (I):
None
Availibility (A):
Partial
Vulnerability Type:
CWE-Other
Vulnerability Consequences:
Denial of Service
References:
Source: CCN
Type: FreeBSD Security Advisory FreeBSD-SA-98:01
LAND attack can cause harm to running FreeBSD systems
Source: CCN
Type: CIAC Information Bulletin I-019
Tools Generating IP Denial-of-Service Attacks
Source: CCN
Type: CIAC Information Bulletin I-036
FreeBSD Denial-of-Service LAND Attacks
Source: MITRE
Type: CNA
CVE-1999-0016
Source: CCN
Type: Hewlett-Packard Company Security Bulletin HPSBUX9801-076
Security Vulnerability with land on HP-UX
Source: CCN
Type: Novell Technical Information Document #2932511
TCP Loopback Denial-of-Service Attack
Source: CCN
Type: CERT Advisory CA-1997-28
IP Denial-of-Service Attacks
Source: CCN
Type: CIAC Information Bulletin I-027b
HP-UX Vulnerabilities (CUE, CDE, land)
Source: CCN
Type: Microsoft Corporation Web site
Windows NT Service Packs
Source: CCN
Type: BID-2666
Multiple Vendor loopback (land.c) Denial of Service Vulnerability
Source: HP
Type: UNKNOWN
HPSBUX9801-076
Source: XF
Type: UNKNOWN
land(288)
Source: CCN
Type: Microsoft Knowledge Base Article 165005
Windows NT Slows Down Because of Land Attack
Source: CCN
Type: Microsoft Knowledge Base Article 179129
STOP 0x0000000A or 0x00000019 Due to Modified Teardrop Attack
Vulnerable Configuration:
Configuration 1
:
cpe:/o:cisco:ios:7000:*:*:*:*:*:*:*
AND
cpe:/a:gnu:inet:5.01:*:*:*:*:*:*:*
OR
cpe:/a:microsoft:winsock:2.0:*:*:*:*:*:*:*
Configuration 2
:
cpe:/o:hp:hp-ux:9.00:*:*:*:*:*:*:*
OR
cpe:/o:hp:hp-ux:9.01:*:*:*:*:*:*:*
OR
cpe:/o:hp:hp-ux:9.03:*:*:*:*:*:*:*
OR
cpe:/o:hp:hp-ux:9.04:*:*:*:*:*:*:*
OR
cpe:/o:hp:hp-ux:9.05:*:*:*:*:*:*:*
OR
cpe:/o:hp:hp-ux:9.07:*:*:*:*:*:*:*
OR
cpe:/o:hp:hp-ux:10.00:*:*:*:*:*:*:*
OR
cpe:/o:hp:hp-ux:10.01:*:*:*:*:*:*:*
OR
cpe:/o:hp:hp-ux:10.10:*:*:*:*:*:*:*
OR
cpe:/o:hp:hp-ux:10.16:*:*:*:*:*:*:*
OR
cpe:/o:hp:hp-ux:10.20:*:*:*:*:*:*:*
OR
cpe:/o:hp:hp-ux:10.24:*:*:*:*:*:*:*
OR
cpe:/o:hp:hp-ux:10.30:*:*:*:*:*:*:*
OR
cpe:/o:hp:hp-ux:11.00:*:*:*:*:*:*:*
OR
cpe:/o:microsoft:windows_95:*:*:*:*:*:*:*:*
OR
cpe:/o:microsoft:windows_nt:4.0:*:*:*:*:*:*:*
OR
cpe:/o:netbsd:netbsd:1.0:*:*:*:*:*:*:*
OR
cpe:/o:netbsd:netbsd:1.1:*:*:*:*:*:*:*
OR
cpe:/o:sun:sunos:4.1.3u1:*:*:*:*:*:*:*
OR
cpe:/o:sun:sunos:4.1.4:*:*:*:*:*:*:*
Configuration CCN 1
:
cpe:/o:sco:unix:*:*:*:*:*:*:*:*
OR
cpe:/o:sco:openserver:5.0:*:*:*:*:*:*:*
OR
cpe:/o:sco:unixware:2.1.0:*:*:*:*:*:*:*
OR
cpe:/a:sco:cmw:3.0:*:*:*:*:*:*:*
AND
cpe:/o:ibm:aix:*:*:*:*:*:*:*:*
OR
cpe:/o:windriver:bsdos:*:*:*:*:*:*:*:*
OR
cpe:/o:hp:hp-ux:*:*:*:*:*:*:*:*
OR
cpe:/o:sgi:irix:*:*:*:*:*:*:*:*
OR
cpe:/o:linux:linux_kernel:*:*:*:*:*:*:*:*
OR
cpe:/o:sun:solaris:*:*:*:*:*:*:*:*
OR
cpe:/o:ibm:os2:*:*:*:*:*:*:*:*
OR
cpe:/o:microsoft:windows_95:*:*:*:*:*:*:*:*
OR
cpe:/a:data_general:dg_ux:*:*:*:*:*:*:*:*
OR
cpe:/o:freebsd:freebsd:*:*:*:*:*:*:*:*
OR
cpe:/o:microsoft:windows_nt:4.0:*:*:*:*:*:*:*
OR
cpe:/o:microsoft:windows_98:*:*:*:*:*:*:*:*
OR
cpe:/a:novell:netware:*:*:*:*:*:*:*:*
OR
cpe:/o:microsoft:windows_98se:*:*:*:*:*:*:*:*
OR
cpe:/o:microsoft:windows_2000:*:*:*:*:*:*:*:*
OR
cpe:/o:cisco:ios:*:*:*:*:*:*:*:*
OR
cpe:/o:microsoft:windows_me:*:*:*:*:*:*:*:*
OR
cpe:/o:compaq:tru64:*:*:*:*:*:*:*:*
OR
cpe:/o:microsoft:windows:xp:*:*:*:*:*:*:*
OR
cpe:/o:apple:mac_os:*:*:*:*:*:*:*:*
OR
cpe:/o:microsoft:windows:2003_server:*:*:*:*:*:*:*
Denotes that component is vulnerable
Oval Definitions
Definition ID
Class
Title
Last Modified
oval:org.mitre.oval:def:5835
V
Multiple OS TCP/IP DoS Vulnerabilities
2008-09-08
oval:org.mitre.oval:def:5727
V
A TCP SYN packet with target host's address as both source and destination can cause system hangs.
2008-08-25
BACK
cisco
ios 7000
gnu
inet 5.01
microsoft
winsock 2.0
hp
hp-ux 9.00
hp
hp-ux 9.01
hp
hp-ux 9.03
hp
hp-ux 9.04
hp
hp-ux 9.05
hp
hp-ux 9.07
hp
hp-ux 10.00
hp
hp-ux 10.01
hp
hp-ux 10.10
hp
hp-ux 10.16
hp
hp-ux 10.20
hp
hp-ux 10.24
hp
hp-ux 10.30
hp
hp-ux 11.00
microsoft
windows 95 *
microsoft
windows nt 4.0
netbsd
netbsd 1.0
netbsd
netbsd 1.1
sun
sunos 4.1.3u1
sun
sunos 4.1.4
sco
unix *
sco
openserver 5.0
sco
unixware 2.1.0
sco
cmw 3.0
ibm
aix *
windriver
bsdos *
hp
hp-ux *
sgi
irix *
linux
linux kernel *
sun
solaris *
ibm
os2 *
microsoft
windows 95 *
data_general
dg ux *
freebsd
freebsd *
microsoft
windows nt 4.0
microsoft
windows 98 *
novell
netware *
microsoft
windows 98se *
microsoft
windows 2000 *
cisco
ios *
microsoft
windows me *
compaq
tru64 *
microsoft
windows xp
apple
mac os *
microsoft
windows 2003_server