CVE-1999-1463 — Microsoft Windows NT vulnerability

3 documents3 sources

Severity

5.0MEDIUMNVD

EPSS

2.7%

top 13.99%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Microsoft Windows NT

Timeline

PublishedJul 10

Latest updateApr 30

Description

Windows NT 4.0 before SP3 allows remote attackers to bypass firewall restrictions or cause a denial of service (crash) by sending improperly fragmented IP packets without the first fragment, which the TCP/IP stack incorrectly reassembles into a valid session.

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 10.0 | Impact: 2.9

Affected Packages1 packages

▶NVDmicrosoft/windows_nt4.0

Patches

Patch: www.securityfocus.com ↗Patch: www.securityfocus.com ↗

🔴Vulnerability Details

GHSA

GHSA-rp7x-gfhv-xmq5: Windows NT 4↗2022-04-30

▶

CVEList

CVE-1999-1463: Windows NT 4↗2001-09-12

▶