CVE-2004-1060

Icmp - Denial of Service

Title source: rule

Description

Multiple TCP/IP and ICMP implementations, when using Path MTU (PMTU) discovery (PMTUD), allow remote attackers to cause a denial of service (network throughput reduction for TCP connections) via forged ICMP ("Fragmentation Needed and Don't Fragment was Set") packets with a low next-hop MTU value, aka the "Path MTU discovery attack." NOTE: CVE-2004-0790, CVE-2004-0791, and CVE-2004-1060 have been SPLIT based on different attacks; CVE-2005-0065, CVE-2005-0066, CVE-2005-0067, and CVE-2005-0068 are related identifiers that are SPLIT based on the underlying vulnerability. While CVE normally SPLITs based on vulnerability, the attack-based identifiers exist due to the variety and number of affected implementations and solutions that address the attacks instead of the underlying vulnerabilities.

Exploits (2)

exploitdb WRITEUP VERIFIED

by Fernando Gont · textdosmultiple

https://www.exploit-db.com/exploits/25388

View Code ZIP pw:eip

exploitdb WORKING POC

cdoswindows

https://www.exploit-db.com/exploits/942

View Code ZIP pw:eip

References (20)

[Various Sources] ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2006.4/SCOSA-2006.4.txt

[Mailing List] http://marc.info/?l=bugtraq&m=112861397904255&w=2

[Vendor Advisory] http://www.cisco.com/warp/public/707/cisco-sa-20050412-icmp.shtml

[Vendor Advisory] http://www.gont.com.ar/drafts/icmp-attacks-against-tcp.html

[Vendor Advisory] http://www.uniras.gov.uk/niscc/docs/al-20050412-00308.html?lang=en

[Vendor Advisory] https://docs.microsoft.com/en-us/security-updates/securitybulletins/2005/ms05-019

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/archive/1/418882/100/0/threaded

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/13124

[Third Party Advisory, VDB Entry] https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A181

[Third Party Advisory, VDB Entry] https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A196

[Third Party Advisory, VDB Entry] https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2188

[Third Party Advisory, VDB Entry] https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A3826

[Third Party Advisory, VDB Entry] https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A405

[Third Party Advisory, VDB Entry] https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5386

[Third Party Advisory, VDB Entry] https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A651

[Third Party Advisory, VDB Entry] https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A780

[Third Party Advisory, VDB Entry] https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A899

[Third Party Advisory] http://secunia.com/advisories/18317

[Third Party Advisory] http://securityreason.com/securityalert/19

[Third Party Advisory] http://securityreason.com/securityalert/57

Scores

EPSS 0.5991

EPSS Percentile 98.3%

Details

Status published

Products (2)

icmp/icmp

tcp/tcp

Published Apr 12, 2004

Tracked Since Feb 18, 2026