CVE-1999-0918

Microsoft Windows - Denial of Service via Malformed IGMP Packets

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 3 public exploits for CVE-1999-0918. PoCs published by klepto, Coolio, Rob Mosher.

AI-analyzed exploit summary This exploit sends malformed IGMP packets to crash Windows 98/2000 systems by triggering a DoS condition. It crafts raw IP packets with invalid IGMP headers and fragmented offsets to destabilize the target's TCP/IP stack.

Description

Denial of service in various Windows systems via malformed, fragmented IGMP packets.

Exploits (3)

exploitdb WORKING POC VERIFIED
by klepto · cdoswindows
https://www.exploit-db.com/exploits/19414

This exploit sends malformed IGMP packets to crash Windows 98/2000 systems by triggering a DoS condition. It crafts raw IP packets with invalid IGMP headers and fragmented offsets to destabilize the target's TCP/IP stack.

Classification
Working Poc 95%
Attack Type
Dos
Complexity
Moderate
Reliability
Reliable
Target: Windows 98, Windows 2000 (TCP/IP stack)
No auth needed
Prerequisites: Raw socket permissions · Network access to target
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC VERIFIED
by Coolio · cdoswindows
https://www.exploit-db.com/exploits/19413

This exploit sends malformed IGMP packets to Windows 98 and Windows 2000 systems, causing a denial-of-service (DoS) condition such as a blue screen or reboot. It includes IP spoofing and random payload generation to trigger the vulnerability.

Classification
Working Poc 95%
Attack Type
Dos
Complexity
Moderate
Reliability
Reliable
Target: Windows 98, Windows 98 SE, Windows 2000 build 2000
No auth needed
Prerequisites: Raw socket permissions · Network access to target
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC VERIFIED
by Rob Mosher · cdoswindows
https://www.exploit-db.com/exploits/19415

This exploit targets a vulnerability in Windows 98 and Windows 2000 TCP/IP stacks by sending malformed IGMP packets, causing unpredictable results such as a Blue Screen or reboot. The code crafts and sends raw IP packets with malformed IGMP headers to the target host.

Classification
Working Poc 95%
Attack Type
Dos
Complexity
Moderate
Reliability
Reliable
Target: Windows 98 and Windows 2000 TCP/IP stack
No auth needed
Prerequisites: Raw socket creation privileges · Network access to the target host
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/514
Vendor Advisory vendor-advisory x_refsource_mskb
http://support.microsoft.com/default.aspx?scid=kb%3B%5BLN%5D%3BQ238329

Scores

EPSS 0.3047
EPSS Percentile 98.0%

Details

CWE
CWE-20
Status published
Products (4)
microsoft/windows_2000
microsoft/windows_95
microsoft/windows_98
microsoft/windows_nt 4.0 (6 CPE variants)
Published Jul 03, 1999
Tracked Since Feb 18, 2026