cbcvebase.
CVE-1999-0103
published 1996-02-08

CVE-1999-0103: Echo and chargen, or other combinations of UDP services, can be used in tandem to flood the server, a.k.a. UDP bomb or UDP packet storm.

PriorityP425medium5CVSS 2.0
AVNACLAuNCNINAP
EXPLOIT
EPSS
14.63%
96.2th percentile
Echo and chargen, or other combinations of UDP services, can be used in tandem to flood the server, a.k.a. UDP bomb or UDP packet storm.

Affected

35 ranges· showing 25
VendorProductVersion rangeFixed in
canonicalubuntu_linux
canonicalubuntu_linux
canonicalubuntu_linux
canonicalubuntu_linux
debiandebian_linux
debiandebian_linux
debiandebian_linux
debiankrb5< krb5 1.10.1+dfsg-6 (bookworm)krb5 1.10.1+dfsg-6 (bookworm)
debiansamba< samba 2:4.1.8+dfsg-1 (bookworm)samba 2:4.1.8+dfsg-1 (bookworm)
fedoraprojectfedora
fedoraprojectfedora
fedoraprojectfedora
mitkerberos_5< 1.11.31.11.3
mitkrb5>= 0 < 1.10.1+dfsg-61.10.1+dfsg-6
mitkrb5>= 0 < 1.10.1+dfsg-61.10.1+dfsg-6
mitkrb5>= 0 < 1.10.1+dfsg-61.10.1+dfsg-6
mitkrb5>= 0 < 1.10.1+dfsg-61.10.1+dfsg-6
opensuseopensuse
opensuseopensuse
opensuseopensuse
redhatenterprise_linux_desktop
redhatenterprise_linux_desktop
redhatenterprise_linux_eus
redhatenterprise_linux_eus
redhatenterprise_linux_server

CVSS provenance

nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:N/I:N/A:P
osv5.0MEDIUM
vendor_debian5.0MEDIUM
vendor_redhat5.0MEDIUM
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.