CVE-1999-1339

Linux <2.2.10 & FreeBSD <3.2 - DoS

Title source: llm

Description

Vulnerability when Network Address Translation (NAT) is enabled in Linux 2.2.10 and earlier with ipchains, or FreeBSD 3.2 with ipfw, allows remote attackers to cause a denial of service (kernel panic) via a ping -R (record route) command.

References (5)

[Vendor Advisory] http://www.kernel.org/pub/linux/kernel/v2.2/patch-2.2.11.gz

[Third Party Advisory, VDB Entry] http://www.osvdb.org/6105

[Third Party Advisory] http://www.iss.net/security_center/static/7257.php

[Mailing List] http://marc.info/?l=bugtraq&m=93277426802802&w=2

[Mailing List] http://marc.info/?l=bugtraq&m=93277766505061&w=2

Scores

EPSS 0.0111

EPSS Percentile 77.8%

Classification

Status draft

Affected Products (2)

freebsd/freebsd

linux/linux_kernel < 2.2.10

Timeline

Published Dec 31, 1999

Tracked Since Feb 18, 2026