Published: 31/12/2002 Updated: 07/11/2023

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

VMScore: 510

Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P

Microsoft Windows 2000 allows remote malicious users to cause a denial of service (memory consumption) by sending a flood of empty TCP/IP packets with the ACK and FIN bits set to the NetBIOS port (TCP/139), as demonstrated by stream3.

Vulnerable Product	Search on Vulmon	Subscribe to Product
microsoft windows nt 4.0
microsoft windows 2000

source: wwwsecurityfocuscom/bid/3967/info An issue exists in Windows which could cause the TCP stack to consume all available system memory This is achieved if a user sends numerous empty TCP packets to a host on port 139 Successful exploitation of this vulnerability could render the system useless /* ...

source: wwwsecurityfocuscom/bid/3967/info An issue exists in Windows which could cause the TCP stack to consume all available system memory This is achieved if a user sends numerous empty TCP packets to a host on port 139 Successful exploitation of this vulnerability could render the system useless /* stream3c - TCP FIN packet ...

NVD-CWE-Other http://online.securityfocus.com/archive/1/252616 http://www.securityfocus.com/bid/3967 https://exchange.xforce.ibmcloud.com/vulnerabilities/8037 http://support.microsoft.com/default.aspx?scid=kb%3BEN-US%3Bq280446 https://nvd.nist.gov https://www.exploit-db.com/exploits/21245/

CVE-2002-1712

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect