Vulnerabilities > CVE-1999-1157 - Denial-Of-Service vulnerability in Windows NT

CVSS 5.0 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

PARTIAL

network

low complexity

microsoft

NVD

Published: 1999-12-31

Updated: 2017-10-10

Summary

Tcpip.sys in Windows NT 4.0 before SP4 allows remote attackers to cause a denial of service via an ICMP Subnet Mask Address Request packet, when certain multiple IP addresses are bound to the same network interface.

Vulnerable Configurations

Part	Description	Count
OS	Microsoft Microsoft Windows NT - Microsoft Windows NT 3.0.1 Microsoft Windows NT 3.1 Microsoft Windows NT 3.5 Microsoft Windows NT 3.5.1 Microsoft Windows NT 3.51 Microsoft Windows NT 4.0	147

References

http://support.microsoft.com/support/kb/articles/Q192/7/74.ASP
https://exchange.xforce.ibmcloud.com/vulnerabilities/3894