CVE-1999-0909

Published Sep 20, 1999

Last updated a year ago

Overview

Description: Multihomed Windows systems allow a remote attacker to bypass IP source routing restrictions via a malformed packet with IP options, aka the "Spoofed Route Pointer" vulnerability.
Source: cve@mitre.org
NVD status: Modified

Hype score: Not currently trending

Risk scores

CVSS 2.0

Type: Primary
Base score: 7.5
Impact score: 6.4
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:P/I:P/A:P

Weaknesses

nvd@nist.gov: CWE-264

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:microsoft:terminal_server:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "40242161-D5AD-4314-AB95-E61292C49DF2"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:microsoft:windows_95:0a:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8429C080-F550-4D03-A87A-4546273712AE"
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_95:0b:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5D153766-0C57-46F4-8865-6F1ED597B53C"
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_98se:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AA733AD2-D948-46A0-A063-D29081A56F1F"
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_nt:4.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E53CDA8E-50A8-4509-B070-CCA5604FFB21"
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_nt:4.0:sp1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5BDCBCB8-DAA3-465F-ADDE-9143B8251989"
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_nt:4.0:sp2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B86E0671-ED68-4549-B3AC-FD8BD79B0860"
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_nt:4.0:sp3:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BB76E7EC-C396-4537-9065-4E815DA7097C"
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_nt:4.0:sp4:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4CD026E2-B073-40A6-AD4A-8C76B9169B01"
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_nt:4.0:sp5:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DBFB3E49-3FB5-4947-856D-727CBFFBA543"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Social media

Risk scores

CVSS 2.0

Weaknesses

Configurations

References