CVE-1999-1423

Solaris 2.3-2.6 - Denial of Service via Multicast Ping Request

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-1999-1423. PoCs published by Adam Caldwell.

AI-analyzed exploit summary This exploit leverages a denial of service vulnerability in the ping utility by sending multicast ping requests through the loopback interface, causing a system panic due to an uninitialized incoming queue pointer.

Description

ping in Solaris 2.3 through 2.6 allows local users to cause a denial of service (crash) via a ping request to a multicast address through the loopback interface, e.g. via ping -i.

Exploits (1)

exploitdb WORKING POC VERIFIED
by Adam Caldwell · textdossolaris
https://www.exploit-db.com/exploits/19161

This exploit leverages a denial of service vulnerability in the ping utility by sending multicast ping requests through the loopback interface, causing a system panic due to an uninitialized incoming queue pointer.

Classification
Working Poc 90%
Attack Type
Dos
Complexity
Trivial
Reliability
Reliable
Target: ping utility (various Unix-like systems)
No auth needed
Prerequisites: Access to execute the ping command on the target system
mistral-large-3 · analyzed Feb 16, 2026 Full analysis →

References (7)

Core 7
Core References
Mailing List mailing-list x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=87602558319160&w=2
Mailing List mailing-list x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=87602558319171&w=2
Patch, Vendor Advisory vendor-advisory x_refsource_sun
http://sunsolve.sun.com/pub-cgi/retrieve.pl?doctype=coll&doc=secbull/146
Exploit, Patch, Vendor Advisory vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/209
Third Party Advisory vdb-entry x_refsource_xf
http://www.iss.net/security_center/static/7492.php
Mailing List mailing-list x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=87602558319180&w=2
Mailing List mailing-list x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=87602558319181&w=2

Scores

EPSS 0.0092
EPSS Percentile 56.3%

Details

Status published
Products (8)
sun/solaris 2.4
sun/solaris 2.5
sun/solaris 2.5.1 (2 CPE variants)
sun/solaris 2.6
sun/sunos 5.3
sun/sunos 5.4
sun/sunos 5.5
sun/sunos 5.5.1
Published Jun 26, 1997
Tracked Since Feb 18, 2026