CVE-2001-0951

Windows 2000 - Denial of Service via IKE UDP Port Flood

Title source: llm

Exploitation Summary

EIP tracks 2 public exploits for CVE-2001-0951. PoCs published by Nelson Brito.

AI-analyzed exploit summary This is a proof-of-concept exploit for CVE-2001-0951, targeting a denial-of-service vulnerability in Windows 2000's IKE/ISAKMP service (UDP port 500). It sends a continuous stream of arbitrary packets to cause CPU utilization to spike to 100%.

Description

Windows 2000 allows remote attackers to cause a denial of service (CPU consumption) by flooding Internet Key Exchange (IKE) UDP port 500 with packets that contain a large number of dot characters.

Exploits (2)

exploitdb WORKING POC VERIFIED

by Nelson Brito · cdoswindows

https://www.exploit-db.com/exploits/21171

View Code ZIP pw:eip

This is a proof-of-concept exploit for CVE-2001-0951, targeting a denial-of-service vulnerability in Windows 2000's IKE/ISAKMP service (UDP port 500). It sends a continuous stream of arbitrary packets to cause CPU utilization to spike to 100%.

Classification

Working Poc 95%

Attack Type

Dos

Complexity

Trivial

Reliability

Reliable

Target: Windows 2000 IKE/ISAKMP service

No auth needed

Prerequisites: Network access to target's UDP port 500

MITRE ATT&CK

T1499 - Endpoint Denial of Service

devstral-2 · analyzed Feb 16, 2026 Full analysis →

exploitdb WORKING POC VERIFIED

by Nelson Brito · perldoswindows

https://www.exploit-db.com/exploits/21172

View Code ZIP pw:eip

This Perl script exploits a denial-of-service (DoS) vulnerability in Windows 2000's IKE implementation by flooding UDP port 500 with arbitrary packets, causing CPU utilization to spike to 100%. It uses the Net::RawIP module to craft and send spoofed UDP packets.

Classification

Working Poc 95%

Attack Type

Dos

Complexity

Trivial

Reliability

Reliable

Target: Windows 2000 IKE implementation

No auth needed

Prerequisites: Network access to target's UDP port 500

MITRE ATT&CK

T1499 - Endpoint Denial of Service

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4

Core References

Third Party Advisory, VDB Entry vdb-entry x_refsource_xf

https://exchange.xforce.ibmcloud.com/vulnerabilities/7667

Mailing List mailing-list x_refsource_bugtraq

http://marc.info/?l=bugtraq&m=100774842520403&w=2

Mailing List mailing-list x_refsource_bugtraq

http://marc.info/?l=bugtraq&m=100813081913496&w=2

Exploit, Vendor Advisory vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/3652

Scores

EPSS 0.4076

EPSS Percentile 98.5%

Details

Status published

Products (1)

microsoft/windows_2000

Published Dec 07, 2001

Tracked Since Feb 18, 2026