Exploitation Summary
EIP tracks 1 public exploit for CVE-2001-1244. PoCs published by Darren Reed.
AI-analyzed exploit summary This exploit demonstrates a TCP MSS (Maximum Segment Size) manipulation vulnerability to cause a denial of service by forcing a low MSS value and overwhelming the target system with fragmented packets. It uses raw sockets to send ICMP unreachable messages to manipulate the TCP connection.
Description
Multiple TCP implementations could allow remote attackers to cause a denial of service (bandwidth and CPU exhaustion) by setting the maximum segment size (MSS) to a very small number and requesting large amounts of data, which generates more packets with less TCP-level data that amplify network traffic and consume more server CPU to process.
Exploits (1)
This exploit demonstrates a TCP MSS (Maximum Segment Size) manipulation vulnerability to cause a denial of service by forcing a low MSS value and overwhelming the target system with fragmented packets. It uses raw sockets to send ICMP unreachable messages to manipulate the TCP connection.