CVE-1999-0116

IBM AIX - Denial of Service via SYN Flood

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-1999-0116. PoCs published by Nebunu.

AI-analyzed exploit summary This exploit demonstrates a TCP-based Denial of Service (DoS) attack by spoofing SYN packets from a victim's IP to multiple hosts, causing them to send SYN-ACK responses back to the victim, overwhelming it with RST packets. The code reads a list of target hosts and ports, then sends spoofed SYN packets in a loop.

Description

Denial of service when an attacker sends many SYN packets to create multiple connections without ever sending an ACK to complete the connection, aka SYN flood.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Nebunu · cdosbsd

https://www.exploit-db.com/exploits/343

View Code ZIP pw:eip

This exploit demonstrates a TCP-based Denial of Service (DoS) attack by spoofing SYN packets from a victim's IP to multiple hosts, causing them to send SYN-ACK responses back to the victim, overwhelming it with RST packets. The code reads a list of target hosts and ports, then sends spoofed SYN packets in a loop.

Classification

Working Poc 95%

Attack Type

Dos

Complexity

Moderate

Reliability

Reliable

Target: Generic TCP services (e.g., HTTP, Telnet)

No auth needed

Prerequisites: Raw socket permissions · List of target hosts and ports

MITRE ATT&CK

T1498 - Network Denial of Service T1499 - Endpoint Denial of Service

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2

Core References

Vendor Advisory vendor-advisory x_refsource_sun

http://sunsolve.sun.com/pub-cgi/retrieve.pl?doctype=coll&doc=secbull/136

Vendor Advisory vendor-advisory x_refsource_sgi

ftp://patches.sgi.com/support/free/security/advisories/19961202-01-PX

Scores

EPSS 0.0552

EPSS Percentile 91.8%

Details

Status published

Products (5)

ibm/aix 3.2.5

ibm/aix 4.1

ibm/aix 4.2

ibm/sng 2.1

ibm/sng 2.2

Published Sep 19, 1996

Tracked Since Feb 18, 2026