CVE-1999-1018

Linux kernel <2.2.10 - Info Disclosure

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-1999-1018. PoCs published by Michal Zalewski.

AI-analyzed exploit summary This exploit targets a denial-of-service vulnerability in Linux kernel 2.0.33 by sending malformed IP fragments that trigger a printk function without proper bounds checking, causing a system reboot. The code crafts and sends oversized packets with specific offsets to exploit the vulnerability.

Description

IPChains in Linux kernels 2.2.10 and earlier does not reassemble IP fragments before checking the header information, which allows a remote attacker to bypass the filtering rules using several fragments with 0 offsets.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Michal Zalewski · cdoslinux

https://www.exploit-db.com/exploits/19301

View Code ZIP pw:eip

This exploit targets a denial-of-service vulnerability in Linux kernel 2.0.33 by sending malformed IP fragments that trigger a printk function without proper bounds checking, causing a system reboot. The code crafts and sends oversized packets with specific offsets to exploit the vulnerability.

Classification

Working Poc 100%

Attack Type

Dos

Complexity

Moderate

Reliability

Reliable

Target: Linux kernel 2.0.33

No auth needed

Prerequisites: Raw socket permissions · Network access to the target

MITRE ATT&CK

T1499 - Endpoint Denial of Service

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2

Core References

Patch, Vendor Advisory vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/543

Mailing List mailing-list x_refsource_bugtraq

http://marc.info/?l=bugtraq&m=93312523904591&w=2

Scores

EPSS 0.0722

EPSS Percentile 93.5%

Details

Status published

Products (2)

linux/linux_kernel 2.2.0

linux/linux_kernel < 2.2.10

Published Jul 27, 1999

Tracked Since Feb 18, 2026