CVE-1999-0969 — Microsoft Windows NT vulnerability

3 documents3 sources

Severity

5.0MEDIUMNVD

EPSS

15.3%

top 5.36%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Microsoft Windows NT

Timeline

PublishedSep 29

Latest updateApr 30

Description

The Windows NT RPC service allows remote attackers to conduct a denial of service using spoofed malformed RPC packets which generate an error message that is sent to the spoofed host, potentially setting up a loop, aka Snork.

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 10.0 | Impact: 2.9

Affected Packages1 packages

▶NVDmicrosoft/windows_nt4.0

🔴Vulnerability Details

GHSA

GHSA-p6jf-8hv3-h7hm: The Windows NT RPC service allows remote attackers to conduct a denial of service using spoofed malformed RPC packets which generate an error message↗2022-04-30

▶

CVEList

CVE-1999-0969: The Windows NT RPC service allows remote attackers to conduct a denial of service using spoofed malformed RPC packets which generate an error message↗2000-01-04

▶