Vulnerabilities > CVE-2005-1649 - Denial of Service vulnerability in Microsoft Windows 2003 Server and Windows XP

CVSS 5.0 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

PARTIAL

network

low complexity

microsoft

exploit available

NVD

Published: 2005-05-18

Updated: 2017-01-20

Summary

The IPv6 support in Windows XP SP2, 2003 Server SP1, and Longhorn, with Windows Firewall turned off, allows remote attackers to cause a denial of service (CPU consumption) via a TCP packet with the SYN flag set and the same destination and source address and port, a variant of CVE-2005-0688 and a reoccurrence of the "Land" vulnerability (CVE-1999-0016).

Vulnerable Configurations

Part	Description	Count
OS	Microsoft Microsoft Windows 2003 Server Datacenter_64-Bit Microsoft Windows 2003 Server Enterprise Microsoft Windows 2003 Server Enterprise_64-Bit Microsoft Windows 2003 Server R2 Microsoft Windows 2003 Server Standard Microsoft Windows 2003 Server Web Microsoft Windows XP *	24

Exploit-Db

description	MS Windows XP/2003 Remote Denial of Service Exploit. CVE-2005-0688,CVE-2005-1649. Dos exploit for windows platform
id	EDB-ID:861
last seen	2016-01-31
modified	2005-03-07
published	2005-03-07
reporter	RusH
source	https://www.exploit-db.com/download/861/
title	Microsoft Windows 2003/XP - Remote Denial of Service Exploit

Summary

Vulnerable Configurations

Exploit-Db

References