|
| TC: | 12025 | |
| Description: | Unpatched Windows Systems do not process repeated fragments properly. As a result, a moderate flow of identical fragments (in any protocol, such as ICMP) may result in CPU utilization climbing to 100% for the duration of the attack. | |
| TC Impact: | Denial of Service |
| Vulnerability Publication: | May 2000 | |
| Advisory Copyright: | Dmitri Netes of the BindView HackerShield Development Team | |
| Summary: | A malicious user can send a continuous flow of malformed packets, which can render the system useless while the attack is going on. | |
| Risk: | Medium | |
| CVSS 2.0 metrics: | Access Vector: Network Access Complexity: Low Authentication: None Confidentiality Impact: None Integrity Impact: None Availability Impact: Partial | |
| CVSS 2.0 Base Score: | 5.0 |
| Vulnerability Impact: |
Denial of Service |
|---|
| Host Impact: | An attacker can block the system. | |
| Nature of Remediation: | Update the Operating System (OS). |
| Step required to fix the reported vulnerability: | |
***** Solution type: Apply Patches ***** Apply the appropriate patch for your system. See references for more details. |
| References: | ||
| * MS: MS00-029 http://www.microsoft.com/technet/security/bulletin/ms00-029.asp * BID: 1236 http://www.securityfocus.com/bid/1236 * XF: ip-fragment-reassembly-dos http://xforce.iss.net/xforce/xfdb/4518 |
| CVE Link: |
CVE-2000-0305 |
 |
|---|
| Glossary: |
Denial of Service Fragmentation ICMP Packet |
|---|