| Vulnerability Name: | CVE-1999-0513 (CCN-588) |
| Assigned: | 1997-10-01 |
| Published: | 1997-10-01 |
| Updated: | 2022-08-17 |
| Summary: | ICMP messages to broadcast addresses are allowed, allowing for a Smurf attack that can cause a denial of service.
|
| CVSS v3 Severity: | 5.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L)| Exploitability Metrics: | Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None | | Scope: | Scope (S): Unchanged
| | Impact Metrics: | Confidentiality (C): None
Integrity (I): None
Availibility (A): Low |
|
| CVSS v2 Severity: | 5.0 Medium (CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P)| Exploitability Metrics: | Access Vector (AV): Network
Access Complexity (AC): Low
Authentication (Au): None | | Impact Metrics: | Confidentiality (C): None
Integrity (I): None
Availibility (A): Partial |
5.0 Medium (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P)| Exploitability Metrics: | Access Vector (AV): Network
Access Complexity (AC): Low
Athentication (Au): None
| | Impact Metrics: | Confidentiality (C): None
Integrity (I): None
Availibility (A): Partial |
|
| Vulnerability Type: | CWE-Other
|
| Vulnerability Consequences: | Denial of Service |
| References: | Source: CCN
Type: FreeBSD Security Advisory FreeBSD-SA-98:06
smurf attack
Source: MITRE
Type: CNA
CVE-1999-0513
Source: CCN
Type: CERT Advisory CA-1998-01
smurf IP Denial-of-Service Attacks
Source: CCN
Type: CIAC Information Bulletin I-021a
"smurf" IP Denial-of-Service Attacks
Source: CCN
Type: CIAC Information Bulletin K-032
DDoS Mediation Action List
Source: CCN
Type: OSVDB ID: 916
Multiple Vendor ICMP Broadcast Flood DoS (smurf)
Source: CCN
Type: Cisco Systems Technical Tips
"Smurfing": The Latest in Denial of Service Attacks
Source: CCN
Type: Pentics.net Web site
THE LATEST IN DENIAL OF SERVICE ATTACKS: "SMURFING"
Source: CCN
Type: SANS Institute Resources Web site
Help Defeat Denial of Service Attacks: Step-by-Step
Source: CCN
Type: BID-147
Multiple Vendor Smurf Denial of Service Vulnerability
Source: XF
Type: UNKNOWN
smurf(588)
Source: MISC
Type: UNKNOWN
https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-1999-0513
|
| Vulnerable Configuration: | Configuration 1:
cpe:/o:sun:solaris:2.4:*:x86:*:*:*:*:*OR cpe:/o:digital:unix:4.0d:*:*:*:*:*:*:*OR cpe:/o:ibm:aix:3.2.5:*:*:*:*:*:*:*OR cpe:/o:sun:solaris:2.5.1:*:ppc:*:*:*:*:*OR cpe:/o:sun:solaris:2.5.1:*:x86:*:*:*:*:*OR cpe:/o:sun:solaris:2.5:*:x86:*:*:*:*:*OR cpe:/o:ibm:aix:3.2.4:*:*:*:*:*:*:*OR cpe:/o:digital:unix:4.0:*:*:*:*:*:*:*OR cpe:/o:freebsd:freebsd:2.2.2:*:*:*:*:*:*:*OR cpe:/o:linux:linux_kernel:2.1:*:*:*:*:*:*:*OR cpe:/o:freebsd:freebsd:2.2.3:*:*:*:*:*:*:*OR cpe:/o:freebsd:freebsd:2.0.5:*:*:*:*:*:*:*OR cpe:/o:freebsd:freebsd:1.1.5.1:*:*:*:*:*:*:*OR cpe:/o:sun:sunos:5.5:*:*:*:*:*:*:*OR cpe:/o:linux:linux_kernel:2.0:*:*:*:*:*:*:*OR cpe:/o:digital:unix:4.0b:*:*:*:*:*:*:*OR cpe:/o:hp:hp-ux:11.00:*:*:*:*:*:*:*OR cpe:/o:digital:unix:4.0a:*:*:*:*:*:*:*OR cpe:/o:freebsd:freebsd:2.1.6:*:*:*:*:*:*:*OR cpe:/o:freebsd:freebsd:2.1.7.1:*:*:*:*:*:*:*OR cpe:/o:sun:sunos:5.5.1:*:*:*:*:*:*:*OR cpe:/o:digital:unix:3.2g:*:*:*:*:*:*:*OR cpe:/o:freebsd:freebsd:2.2.4:*:*:*:*:*:*:*OR cpe:/o:freebsd:freebsd:2.1.0:*:*:*:*:*:*:*OR cpe:/o:hp:hp-ux:10.20:*:*:*:*:*:*:*OR cpe:/o:ibm:aix:3.1:*:*:*:*:*:*:*OR cpe:/o:sun:sunos:5.4:*:*:*:*:*:*:*OR cpe:/o:digital:unix:4.0c:*:*:*:*:*:*:*OR cpe:/o:ibm:aix:3.2:*:*:*:*:*:*:*OR cpe:/o:freebsd:freebsd:2.1.5:*:*:*:*:*:*:*OR cpe:/o:netbsd:netbsd:1.2:*:*:*:*:*:*:*OR cpe:/o:sun:sunos:-:*:*:*:*:*:*:*OR cpe:/o:sun:sunos:5.6:*:*:*:*:*:*:*
 Denotes that component is vulnerable |
| BACK |