Published: 09/01/2001 Updated: 12/10/2018

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

VMScore: 445

Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P

Various TCP/IP stacks and network applications allow remote malicious users to cause a denial of service by flooding a target host with TCP connection attempts and completing the TCP/IP handshake without maintaining the connection state on the attacker host, aka the "NAPTHA" class of vulnerabilities. NOTE: this candidate may change significantly as the security community discusses the technical nature of NAPTHA and learns more about the affected applications. This candidate is at a higher level of abstraction than is typical for CVE.

Vulnerable Product	Search on Vulmon	Subscribe to Product
microsoft windows 95
microsoft windows 98
microsoft windows 98se
microsoft windows me
microsoft windows nt 4.0

TCP-Starvation Update: From comments throughout different communities, I've seen links to different articles describing the same issue as I do here I understand this vulnerability that has existed for quite some time already (10y+), and by no means trying to take credit for them Perhaps I used wrong search terms when looking for related articles, or just that they was lo

NVD-CWE-Other http://www.securityfocus.com/bid/2022 http://www.cert.org/advisories/CA-2000-21.html http://razor.bindview.com/publish/advisories/adv_NAPTHA.html http://archives.neohapsis.com/archives/win2ksecadvice/2000-q4/0105.html https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-091 https://nvd.nist.gov https://github.com/Eplox/TCP-Starvation

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2000-1039

Vulnerability Summary

Github Repositories

References

Vulmon Search

About

Products

Connect