CVE-2000-0305

Beos - Resource Management Error

Title source: rule
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2000-0305. PoCs published by phonix.

AI-analyzed exploit summary This exploit sends malformed fragmented IP packets (ICMP or UDP) to trigger a denial-of-service condition (100% CPU utilization) in Windows systems. It leverages raw socket manipulation to craft packets with overlapping fragments, exploiting a vulnerability in IP reassembly.

Description

Windows 95, Windows 98, Windows 2000, Windows NT 4.0, and Terminal Server systems allow a remote attacker to cause a denial of service by sending a large number of identical fragmented IP packets, aka jolt2 or the "IP Fragment Reassembly" vulnerability.

Exploits (1)

exploitdb WORKING POC VERIFIED
by phonix · cdoswindows
https://www.exploit-db.com/exploits/214

This exploit sends malformed fragmented IP packets (ICMP or UDP) to trigger a denial-of-service condition (100% CPU utilization) in Windows systems. It leverages raw socket manipulation to craft packets with overlapping fragments, exploiting a vulnerability in IP reassembly.

Classification
Working Poc 95%
Attack Type
Dos
Complexity
Trivial
Reliability
Reliable
Target: Microsoft Windows (affected by MS00-029)
No auth needed
Prerequisites: Raw socket permissions · Network access to target
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3
Core References
Third Party Advisory, VDB Entry vendor-advisory x_refsource_bindview
http://www.securityfocus.com/templates/advisory.html?id=2240
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/1236

Scores

EPSS 0.4504
EPSS Percentile 98.6%

Details

CWE
CWE-399
Status published
Products (6)
be/beos 5.0
microsoft/terminal_server
microsoft/windows_2000
microsoft/windows_95
microsoft/windows_98
microsoft/windows_nt 4.0
Published May 19, 2000
Tracked Since Feb 18, 2026