EIP-2026-100673

PRE-CVE

OpenBSD 2.0 < 3.6 - TCP Timestamp Remote Denial of Service

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-100673. PoCs published by RusH.

AI-analyzed exploit summary This exploit crafts a malformed TCP packet with a manipulated timestamp option to trigger a remote denial-of-service (DoS) in OpenBSD systems (versions 2.0 to 3.6). It uses raw sockets to send the packet, causing the target system to crash due to improper handling of the timestamp value.

Description

OpenBSD 2.0 < 3.6 - TCP Timestamp Remote Denial of Service

Exploits (1)

exploitdb WORKING POC VERIFIED

by RusH · cdosbsd

https://www.exploit-db.com/exploits/869

View Code ZIP pw:eip

This exploit crafts a malformed TCP packet with a manipulated timestamp option to trigger a remote denial-of-service (DoS) in OpenBSD systems (versions 2.0 to 3.6). It uses raw sockets to send the packet, causing the target system to crash due to improper handling of the timestamp value.

Classification

Working Poc 95%

Attack Type

Dos

Complexity

Moderate

Reliability

Reliable

Target: OpenBSD 2.0 - 3.6

No auth needed

Prerequisites: raw socket permissions · network access to target

MITRE ATT&CK

T1499 - Endpoint Denial of Service

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026