CVE-1999-0451

Linux Kernel 2.0.36 - Denial of Service via Non-Privileged Port Binding

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-1999-0451. PoCs published by David Schwartz.

AI-analyzed exploit summary This exploit demonstrates a kernel memory leak and DoS condition in Linux kernels prior to 2.1.x and 2.2.0pre by locking a random TCP port above 1024 in the CLOSE_WAIT state. It uses multithreading to bind to a port and then abruptly close the socket, causing the kernel to retain the port indefinitely.

Description

Denial of service in Linux 2.0.36 allows local users to prevent any server from listening on any non-privileged port.

Exploits (1)

exploitdb WORKING POC VERIFIED

by David Schwartz · cdoslinux

https://www.exploit-db.com/exploits/19271

View Code ZIP pw:eip

This exploit demonstrates a kernel memory leak and DoS condition in Linux kernels prior to 2.1.x and 2.2.0pre by locking a random TCP port above 1024 in the CLOSE_WAIT state. It uses multithreading to bind to a port and then abruptly close the socket, causing the kernel to retain the port indefinitely.

Classification

Working Poc 95%

Attack Type

Dos

Complexity

Moderate

Reliability

Reliable

Target: Linux kernel < 2.1.x and < 2.2.0pre

No auth needed

Prerequisites: LinuxThreads library · Linux kernel < 2.1.x or < 2.2.0pre

MITRE ATT&CK

T1499 - Endpoint Denial of Service

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (1)

Core 1

Core References

Vendor Advisory vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/343

Scores

EPSS 0.0071

EPSS Percentile 48.8%

Details

Status published

Products (2)

linux/linux_kernel 2.0

linux/linux_kernel 2.2.0

Published Jan 19, 1999

Tracked Since Feb 18, 2026