Lucene search

[email protected]CVE-2001-1244

HistoryJul 07, 2001 - 4:00 a.m.

CVE-2001-1244

2001-07-0704:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2001-1244

tcp

remote attack

denial of service

mss

network traffic

server cpu

nvd

7.5 High

AI Score

Confidence

High

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.012 Low

EPSS

Percentile

84.9%

JSON

Multiple TCP implementations could allow remote attackers to cause a denial of service (bandwidth and CPU exhaustion) by setting the maximum segment size (MSS) to a very small number and requesting large amounts of data, which generates more packets with less TCP-level data that amplify network traffic and consume more server CPU to process.

CPENameOperatorVersion
microsoft:windows_ntmicrosoft windows nteq4.0
openbsd:openbsdopenbsdeq2.8
hp:hp-uxhp hp-uxeq11.11
netbsd:netbsdnetbsdeq1.5
openbsd:openbsdopenbsdeq2.9
sun:sunossun sunoseq5.7
sun:sunossun sunoseq5.8
microsoft:windows_2000microsoft windows 2000eq*
hp:hp-uxhp hp-uxeq11.00
netbsd:netbsdnetbsdeq1.5.1

CPE	Name	Operator	Version
microsoft:windows_nt	microsoft windows nt	eq	4.0
openbsd:openbsd	openbsd	eq	2.8
hp:hp-ux	hp hp-ux	eq	11.11
netbsd:netbsd	netbsd	eq	1.5
openbsd:openbsd	openbsd	eq	2.9
sun:sunos	sun sunos	eq	5.7
sun:sunos	sun sunos	eq	5.8
microsoft:windows_2000	microsoft windows 2000	eq	*
hp:hp-ux	hp hp-ux	eq	11.00
netbsd:netbsd	netbsd	eq	1.5.1

Rows per page:

1-10 of 201

References

www.securityfocus.com/archive/1/195457

www.securityfocus.com/bid/2997

exchange.xforce.ibmcloud.com/vulnerabilities/6824

7.5 High

AI Score

Confidence

High

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.012 Low

EPSS

Percentile

84.9%

JSON