Vulnerability Name:
CVE-1999-0128 (CCN-95)
Assigned:
1996-12-18
Published:
1996-12-18
Updated:
2022-08-17
Summary:
Oversized ICMP ping packets can result in a denial of service, aka Ping o' Death.
CVSS v3 Severity:
4.0 Medium
(CCN CVSS v3.1 Vector:
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
)
Exploitability Metrics:
Attack Vector (AV):
Local
Attack Complexity (AC):
Low
Privileges Required (PR):
None
User Interaction (UI):
None
Scope:
Scope (S):
Unchanged
Impact Metrics:
Confidentiality (C):
None
Integrity (I):
None
Availibility (A):
Low
CVSS v2 Severity:
5.0 Medium
(CVSS v2 Vector:
AV:N/AC:L/Au:N/C:N/I:N/A:P
)
Exploitability Metrics:
Access Vector (AV):
Network
Access Complexity (AC):
Low
Authentication (Au):
None
Impact Metrics:
Confidentiality (C):
None
Integrity (I):
None
Availibility (A):
Partial
2.1 Low
(CCN CVSS v2 Vector:
AV:L/AC:L/Au:N/C:N/I:N/A:P
)
Exploitability Metrics:
Access Vector (AV):
Local
Access Complexity (AC):
Low
Athentication (Au):
None
Impact Metrics:
Confidentiality (C):
None
Integrity (I):
None
Availibility (A):
Partial
Vulnerability Type:
CWE-Other
Vulnerability Consequences:
Denial of Service
References:
Source: CCN
Type: SGI Security Advisory 19961202-01-PX
TCP SYN and Ping Denial of Service Attacks
Source: MITRE
Type: CNA
CVE-1999-0128
Source: CCN
Type: Hewlett-Packard Company Security Bulletin HPSBUX9610-040
Vulnerability with incoming ICMP Echo Request (ping) packets
Source: CCN
Type: CERT Advisory CA-1996-26
Denial-of-Service Attack via ping
Source: CCN
Type: The The Linux Kernel Archives Web site
The Linux Kernel Archives
Source: CCN
Type: OSVDB ID: 11454
Multiple Vendor Oversized ICMP Ping Packet DoS (Ping of Death)
Source: CCN
Type: Oliver von Bueren Web site
www.ovb.ch - Home of Oliver von Bueren
Source: XF
Type: UNKNOWN
ping-death(95)
Source: MISC
Type: UNKNOWN
https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-1999-0128
Vulnerable Configuration:
Configuration 1
:
cpe:/o:sco:openserver:5.0:*:*:*:*:*:*:*
OR
cpe:/o:sun:sunos:5.5:*:x86:*:*:*:*:*
OR
cpe:/o:sco:open_desktop:3.0:*:*:*:*:*:*:*
OR
cpe:/o:digital:osf_1:1.3.3:*:*:*:*:*:*:*
OR
cpe:/o:ibm:aix:4.2:*:*:*:*:*:*:*
OR
cpe:/o:sco:openserver:5.0.2:*:*:*:*:*:*:*
OR
cpe:/o:sco:internet_faststart:1.0:*:*:*:*:*:*:*
OR
cpe:/o:sun:sunos:5.5:*:*:*:*:*:*:*
OR
cpe:/o:linux:linux_kernel:2.0:*:*:*:*:*:*:*
OR
cpe:/o:sco:tcp_ip:1.2.1:*:*:*:*:*:*:*
OR
cpe:/o:sun:sunos:5.4:*:x86:*:*:*:*:*
OR
cpe:/o:sco:internet_faststart:1.1:*:*:*:*:*:*:*
OR
cpe:/o:sun:sunos:5.5.1:*:x86:*:*:*:*:*
OR
cpe:/o:sun:sunos:5.4:*:*:*:*:*:*:*
OR
cpe:/o:sun:sunos:5.5.1:*:*:*:*:*:*:*
OR
cpe:/o:ibm:aix:4.1:*:*:*:*:*:*:*
OR
cpe:/o:ibm:aix:3.2:*:*:*:*:*:*:*
OR
cpe:/o:linux:linux_kernel:1.3.0:*:*:*:*:*:*:*
Configuration 2
:
cpe:/h:ibm:sng:2.2:*:*:*:*:*:*:*
OR
cpe:/h:ibm:sng:*:*:*:*:*:*:*:*
OR
cpe:/h:ibm:sng:2.1:*:*:*:*:*:*:*
Configuration CCN 1
:
cpe:/o:ibm:aix:*:*:*:*:*:*:*:*
OR
cpe:/o:windriver:bsdos:*:*:*:*:*:*:*:*
OR
cpe:/o:hp:hp-ux:*:*:*:*:*:*:*:*
OR
cpe:/o:sgi:irix:*:*:*:*:*:*:*:*
OR
cpe:/o:linux:linux_kernel:*:*:*:*:*:*:*:*
OR
cpe:/o:sun:solaris:*:*:*:*:*:*:*:*
OR
cpe:/o:ibm:os2:*:*:*:*:*:*:*:*
OR
cpe:/o:microsoft:windows_95:*:*:*:*:*:*:*:*
OR
cpe:/a:data_general:dg_ux:*:*:*:*:*:*:*:*
OR
cpe:/o:microsoft:windows_nt:4.0:*:*:*:*:*:*:*
OR
cpe:/o:microsoft:windows_98:*:*:*:*:*:*:*:*
OR
cpe:/a:novell:netware:*:*:*:*:*:*:*:*
OR
cpe:/o:sco:unix:*:*:*:*:*:*:*:*
OR
cpe:/o:microsoft:windows_98se:*:*:*:*:*:*:*:*
OR
cpe:/o:microsoft:windows_2000:*:*:*:*:*:*:*:*
OR
cpe:/o:cisco:ios:*:*:*:*:*:*:*:*
OR
cpe:/o:microsoft:windows_me:*:*:*:*:*:*:*:*
OR
cpe:/o:compaq:tru64:*:*:*:*:*:*:*:*
OR
cpe:/o:microsoft:windows:xp:*:*:*:*:*:*:*
OR
cpe:/o:apple:mac_os:*:*:*:*:*:*:*:*
OR
cpe:/o:microsoft:windows:2003_server:*:*:*:*:*:*:*
Denotes that component is vulnerable
BACK
sco
openserver 5.0
sun
sunos 5.5
sco
open desktop 3.0
digital
osf 1 1.3.3
ibm
aix 4.2
sco
openserver 5.0.2
sco
internet faststart 1.0
sun
sunos 5.5
linux
linux kernel 2.0
sco
tcp ip 1.2.1
sun
sunos 5.4
sco
internet faststart 1.1
sun
sunos 5.5.1
sun
sunos 5.4
sun
sunos 5.5.1
ibm
aix 4.1
ibm
aix 3.2
linux
linux kernel 1.3.0
ibm
sng 2.2
ibm
sng *
ibm
sng 2.1
ibm
aix *
windriver
bsdos *
hp
hp-ux *
sgi
irix *
linux
linux kernel *
sun
solaris *
ibm
os2 *
microsoft
windows 95 *
data_general
dg ux *
microsoft
windows nt 4.0
microsoft
windows 98 *
novell
netware *
sco
unix *
microsoft
windows 98se *
microsoft
windows 2000 *
cisco
ios *
microsoft
windows me *
compaq
tru64 *
microsoft
windows xp
apple
mac os *
microsoft
windows 2003_server