Vulnerabilities > CVE-1999-1018 - Unspecified vulnerability in Linux Kernel

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL
network
low complexity
linux
exploit available
NVD
Published: 1999-07-27
Updated: 2016-10-18

Summary

IPChains in Linux kernels 2.2.10 and earlier does not reassemble IP fragments before checking the header information, which allows a remote attacker to bypass the filtering rules using several fragments with 0 offsets.

Vulnerable Configurations

Part Description Count
OS
Linux
188

Exploit-Db

descriptionLinux kernel 2.0.33 IP Fragment Overlap Vulnerability. CVE-1999-1018. Remote exploit for linux platform
idEDB-ID:19301
last seen2016-02-02
modified1998-04-17
published1998-04-17
reporterMichal Zalewski
sourcehttps://www.exploit-db.com/download/19301/
titleLinux kernel 2.0.33 IP Fragment Overlap Vulnerability

References