CVE-1999-1518

FreeBSD - Denial of Service and Memory Limit Bypass via mmap or shmget

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-1999-1518. PoCs published by Mike Perry.

AI-analyzed exploit summary This exploit demonstrates a denial-of-service (DoS) vulnerability in systems with shared memory implementations based on 4.4BSD code. It bypasses resource limits by allocating excessive memory via mmap() or shmget() and triggering page faults to exhaust system memory.

Description

Operating systems with shared memory implementations based on BSD 4.4 code allow a user to conduct a denial of service and bypass memory limits (e.g., as specified with rlimits) using mmap or shmget to allocate memory and cause page faults.

Exploits (1)

exploitdb WORKING POC VERIFIED
by Mike Perry · cdosbsd
https://www.exploit-db.com/exploits/19423

This exploit demonstrates a denial-of-service (DoS) vulnerability in systems with shared memory implementations based on 4.4BSD code. It bypasses resource limits by allocating excessive memory via mmap() or shmget() and triggering page faults to exhaust system memory.

Classification
Working Poc 95%
Attack Type
Dos
Complexity
Moderate
Reliability
Reliable
Target: Systems with shared memory implementations based on 4.4BSD (e.g., FreeBSD, Linux, BSD variants)
No auth needed
Prerequisites: Access to a vulnerable system with shared memory implementation based on 4.4BSD
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3
Core References
Exploit, Patch, Vendor Advisory vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/526
Mailing List mailing-list x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=93207728118694&w=2
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/2351

Scores

EPSS 0.0307
EPSS Percentile 86.0%

Details

Status published
Products (20)
freebsd/freebsd 1.1.5.1
freebsd/freebsd 2.0
freebsd/freebsd 2.0.5
freebsd/freebsd 2.1.0
freebsd/freebsd 2.1.5
freebsd/freebsd 2.1.6
freebsd/freebsd 2.1.7.1
freebsd/freebsd 2.2.2
freebsd/freebsd 2.2.3
freebsd/freebsd 2.2.4
... and 10 more
Published Jul 15, 1999
Tracked Since Feb 18, 2026