CVE-1999-1254
published 1999-03-08CVE-1999-1254: Windows 95, 98, and NT 4.0 allow remote attackers to cause a denial of service by spoofing ICMP redirect messages from a router, which causes Windows to change…
PriorityP414medium5CVSS 2.0
AVNACLAuNCNINAP
EPSS
13.34%
95.9th percentile
Windows 95, 98, and NT 4.0 allow remote attackers to cause a denial of service by spoofing ICMP redirect messages from a router, which causes Windows to change its routing tables.
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
VulDB
Microsoft Windows 95/98/NT 4.0 ICMP Redirect Message denial of service (XFDB-1947)
vuldb·2026-04-19·CVSS 5.0
CVE-1999-1254 [MEDIUM] Microsoft Windows 95/98/NT 4.0 ICMP Redirect Message denial of service (XFDB-1947)
A vulnerability classified as problematic has been found in Microsoft Windows 95/98/NT 4.0. The affected element is an unknown function of the component ICMP Redirect Message Handler. Performing a manipulation results in denial of service.
This vulnerability is cataloged as CVE-1999-1254. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.
It is recommended to upgrade the affected component.
GHSA
GHSA-72gc-hjc8-g277: Windows 95, 98, and NT 4
ghsa_unreviewed·2022-04-30
CVE-1999-1254 [MEDIUM] GHSA-72gc-hjc8-g277: Windows 95, 98, and NT 4
Windows 95, 98, and NT 4.0 allow remote attackers to cause a denial of service by spoofing ICMP redirect messages from a router, which causes Windows to change its routing tables.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
1999-03-08
Published