CVE-1999-1201
CVSS5.0
发布时间 :1999-02-06 00:00:00
修订时间 :2016-10-17 22:02:12
NMCOS    

[原文]Windows 95 and Windows 98 systems, when configured with multiple TCP/IP stacks bound to the same MAC address, allow remote attackers to cause a denial of service (traffic amplification) via a certain ICMP echo (ping) packet, which causes all stacks to send a ping response, aka TCP Chorusing.


[CNNVD]Windows 9x TCP合唱漏洞(CNNVD-199902-014)

        Windows 95以及Windows 98系统存在漏洞。当系统配置了绑定相同MAC地址的多重TCP/IP堆栈时,远程攻击者可以通过某一个ICMP回音(ping)数据包造成一次服务拒绝(通信量扩大),导致所有堆栈发送ping响应,也称为TCP合唱。

- CVSS (基础分值)

CVSS分值: 5 [中等(MEDIUM)]
机密性影响: [--]
完整性影响: [--]
可用性影响: [--]
攻击复杂度: [--]
攻击向量: [--]
身份认证: [--]

- CPE (受影响的平台与产品)

cpe:/o:microsoft:windows_95Microsoft Windows 95
cpe:/o:microsoft:windows_98::goldMicrosoft windows 98_gold

- OVAL (用于检测的技术细节)

未找到相关OVAL定义

- 官方数据库链接

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-1999-1201
(官方数据源) MITRE
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-1999-1201
(官方数据源) NVD
http://www.cnnvd.org.cn/vulnerability/show/cv_cnnvdid/CNNVD-199902-014
(官方数据源) CNNVD

- 其它链接及资源

http://marc.info/?l=ntbugtraq&m=91849617221319&w=2
(UNKNOWN)  NTBUGTRAQ  19990206 New Windows 9x Bug: TCP Chorusing
http://www.securityfocus.com/bid/225
(UNKNOWN)  BID  225
http://xforce.iss.net/xforce/xfdb/7542
(UNKNOWN)  XF  win-multiple-ip-dos(7542)

- 漏洞信息

Windows 9x TCP合唱漏洞
中危 设计错误
1999-02-06 00:00:00 2005-05-20 00:00:00
远程  
        Windows 95以及Windows 98系统存在漏洞。当系统配置了绑定相同MAC地址的多重TCP/IP堆栈时,远程攻击者可以通过某一个ICMP回音(ping)数据包造成一次服务拒绝(通信量扩大),导致所有堆栈发送ping响应,也称为TCP合唱。

- 公告与补丁

        Unbind multiple IP stacks from Windows 9x hosts.

- 漏洞信息

218
Microsoft Windows Multiple TCP/IP Stack Malformed Ping DoS
Remote / Network Access Denial of Service
Loss of Availability
Exploit Public

- 漏洞描述

Unknown or Incomplete

- 时间线

1999-02-06 Unknow
Unknow Unknow

- 解决方案

Unknown or Incomplete

- 相关参考

- 漏洞作者

Unknown or Incomplete

- 漏洞信息

Windows 9x TCP Chorusing Vulnerability
Design Error 225
Yes No
1999-02-06 12:00:00 2009-07-11 12:16:00
This vulnerability was posted to NTBugtraq by Dan Kaminsky <effugas@BEST.COM>.

- 受影响的程序版本

Microsoft Windows 98
Microsoft Windows 95
Microsoft Windows NT 4.0
+ Microsoft Windows NT Enterprise Server 4.0
+ Microsoft Windows NT Enterprise Server 4.0
+ Microsoft Windows NT Server 4.0
+ Microsoft Windows NT Server 4.0
+ Microsoft Windows NT Terminal Server 4.0
+ Microsoft Windows NT Terminal Server 4.0
+ Microsoft Windows NT Workstation 4.0
+ Microsoft Windows NT Workstation 4.0

- 不受影响的程序版本

Microsoft Windows NT 4.0
+ Microsoft Windows NT Enterprise Server 4.0
+ Microsoft Windows NT Enterprise Server 4.0
+ Microsoft Windows NT Server 4.0
+ Microsoft Windows NT Server 4.0
+ Microsoft Windows NT Terminal Server 4.0
+ Microsoft Windows NT Terminal Server 4.0
+ Microsoft Windows NT Workstation 4.0
+ Microsoft Windows NT Workstation 4.0

- 漏洞讨论

Windows 9x boxes can load multiple IP stacks to one NI card and IP address. When "pinged" from a Wintel host, these machines respond as normal. When "pinged" from a Linux client (ping or fping), these hosts will issue one ACK for each stack loaded on the NIC. (ie: if five stacks are loaded, one ACK and four duplicate ACKs will be sent). The multiple ACKs create collisions on the subnet which may affect network functionality of other hosts on the subnet.

With one offending host on the subnet, this TCP chorus may impact proper functioning of Samba hosts on the wire. With four TCP chorusers, an entire subnet may be rendered useless.

- 漏洞利用

see discussion

- 解决方案

Unbind multiple IP stacks from Windows 9x hosts.

- 相关参考

 

 

关于SCAP中文社区

SCAP中文社区是国内第一个以SCAP为主题的中文开放社区。了解更多信息,请查阅[关于本站]

版权声明

CVE/CWE/OVAL均为MITRE公司的注册商标,它们的官方数据源均保存在MITRE公司的相关网站