| Vulnerability Name: | CVE-1999-0116 (CCN-135) | ||||||||
| Assigned: | 1996-09-19 | ||||||||
| Published: | 1996-09-19 | ||||||||
| Updated: | 2008-09-09 | ||||||||
| Summary: | Denial of service when an attacker sends many SYN packets to create multiple connections without ever sending an ACK to complete the connection, aka SYN flood. | ||||||||
| CVSS v3 Severity: | 5.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L)
| ||||||||
| CVSS v2 Severity: | 5.0 Medium (CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P)
| ||||||||
| Vulnerability Type: | CWE-Other | ||||||||
| Vulnerability Consequences: | Denial of Service | ||||||||
| References: | Source: CCN Type: SGI Security Advisory 19960901-01-A TCP SYN Denial of Service Attack Source: CCN Type: SGI Security Advisory 19961202-01-PX TCP SYN and Ping Denial of Service Attacks Source: SGI Type: UNKNOWN 19961202-01-PX Source: MITRE Type: CNA CVE-1999-0116 Source: SUN Type: UNKNOWN 00136 Source: CCN Type: Sun Microsystems, Inc. Security Bulletin #00136 TCP-based "SYN flood" denial-of-service attack Source: CCN Type: CERT Advisory CA-1996-21 TCP SYN Flooding and IP Spoofing Attacks Source: CCN Type: OSVDB ID: 10182 TCP/IP SYN Packets Saturation DoS Source: CCN Type: OSVDB ID: 41944 Belkin Wireless G Router TCP SYN Flood Remote DoS Source: CCN Type: OSVDB ID: 55784 Axesstel MV 410R SYN Flood Remote DoS Source: XF Type: UNKNOWN synflood(135) Source: CCN Type: Microsoft Knowledge Base Article 142641 Internet Server Unavailable Because of Malicious SYN Attacks | ||||||||
| Vulnerable Configuration: | Configuration 1: Configuration 2: Configuration CCN 1:  Denotes that component is vulnerable | ||||||||
| BACK | |||||||||