CVE-1999-1412

Apple MacOS X 1.0 - Apache HTTP Server - DoS

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-1999-1412. PoCs published by Juergen Schmidt.

AI-analyzed exploit summary This script exploits a vulnerability in MacOS X Server by launching multiple concurrent HTTP GET requests to a CGI script, causing the system to panic under heavy load. The vulnerability is triggered by stressing the system with 32 or more processes.

Description

A possible interaction between Apple MacOS X release 1.0 and Apache HTTP server allows remote attackers to cause a denial of service (crash) via a flood of HTTP GET requests to CGI programs, which generates a large number of processes.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Juergen Schmidt · bashlocalosx

https://www.exploit-db.com/exploits/19244

View Code ZIP pw:eip

This script exploits a vulnerability in MacOS X Server by launching multiple concurrent HTTP GET requests to a CGI script, causing the system to panic under heavy load. The vulnerability is triggered by stressing the system with 32 or more processes.

Classification

Working Poc 90%

Attack Type

Dos

Complexity

Trivial

Reliability

Reliable

Target: MacOS X Server (version not specified)

No auth needed

Prerequisites: Apache web server running on MacOS X Server · CGI script accessible at /cgi-bin/test-cgi · Bash environment

MITRE ATT&CK

T1499 - Endpoint Denial of Service

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2

Core References

Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq

http://www.securityfocus.com/archive/1/14215

Third Party Advisory, VDB Entry vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/306

Scores

EPSS 0.3534

EPSS Percentile 98.2%

Details

Status published

Products (2)

apache/http_server

apple/macos 1.0

Published Jun 03, 1999

Tracked Since Feb 18, 2026