CVE-1999-0128

Digital Osf 1 - Denial of Service

Title source: rule

Exploitation Summary

EIP tracks 1 public exploit for CVE-1999-0128.

AI-analyzed exploit summary This exploit leverages the 'Ping of Death' vulnerability by sending an oversized ICMP packet (65510 bytes) to crash or destabilize the target system. The attack exploits improper handling of packet fragmentation in older network stacks.

Description

Oversized ICMP ping packets can result in a denial of service, aka Ping o' Death.

Exploits (1)

exploitdb WORKING POC

doswindows

https://www.exploit-db.com/exploits/324

View Code ZIP pw:eip

This exploit leverages the 'Ping of Death' vulnerability by sending an oversized ICMP packet (65510 bytes) to crash or destabilize the target system. The attack exploits improper handling of packet fragmentation in older network stacks.

Classification

Working Poc 90%

Attack Type

Dos

Complexity

Trivial

Reliability

Reliable

Target: Various older operating systems (e.g., Windows 95, early Unix systems)

No auth needed

Prerequisites: Network connectivity to the target · ICMP packets not filtered

MITRE ATT&CK

T1499 - Endpoint Denial of Service

devstral-2 · analyzed Feb 19, 2026 Full analysis →

References (1)

Core 1

Core References

Third Party Advisory, VDB Entry x_refsource_misc

https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-1999-0128

Scores

EPSS 0.7410

EPSS Percentile 99.4%

Details

Status published

Products (18)

digital/osf_1 1.3.3

ibm/aix 3.2

ibm/aix 4.1

ibm/aix 4.2

ibm/sng

ibm/sng 2.1

ibm/sng 2.2

linux/linux_kernel 1.3.0

linux/linux_kernel 2.0

sco/internet_faststart 1.0

... and 8 more

Published Dec 18, 1996

Tracked Since Feb 18, 2026