CVE-2001-1244

Published: Jul 7, 2001Modified: Apr 16, 2026

5.0

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:P

Exploitability: 10.0 / Impact: 2.9

Source: NVD

Description

Multiple TCP implementations could allow remote attackers to cause a denial of service (bandwidth and CPU exhaustion) by setting the maximum segment size (MSS) to a very small number and requesting large amounts of data, which generates more packets with less TCP-level data that amplify network traffic and consume more server CPU to process.

Affected (29)

Products: Freebsd: Freebsd · Hp: Hp Ux, Vvos · Linux: Linux Kernel · +4 more

Show all products

Freebsd: Freebsd · Hp: Hp Ux, Vvos · Linux: Linux Kernel · Microsoft: Windows 2000, Windows Nt · Netbsd: Netbsd · Openbsd: Openbsd · Sun: Sunos

1 product

2 products

1 product

2 products

1 product

1 product

1 product

Configuration A

29 vulnerable

Vulnerable Software	Affected Versions
Freebsd Freebsd	Version 4.3
Hp Hp Ux	Version 11.0.4
Hp Hp Ux	Version 11.00
Hp Hp Ux	Version 11.11
Hp Vvos	Version 11.04
Linux Linux Kernel	Version 2.4.0
Linux Linux Kernel	Version 2.4.1
Linux Linux Kernel	Version 2.4.2
Linux Linux Kernel	Version 2.4.3
Linux Linux Kernel	Version 2.4.4
Linux Linux Kernel	Version 2.4.5
Microsoft Windows 2000	All versions
Microsoft Windows 2000	All versions
Microsoft Windows 2000	All versions
Microsoft Windows Nt	Version 4.0
Microsoft Windows Nt	Version 4.0 sp1
Microsoft Windows Nt	Version 4.0 sp2
Microsoft Windows Nt	Version 4.0 sp3
Microsoft Windows Nt	Version 4.0 sp4
Microsoft Windows Nt	Version 4.0 sp5
Microsoft Windows Nt	Version 4.0 sp6
Microsoft Windows Nt	Version 4.0 sp6a
Netbsd Netbsd	Version 1.5.1
Netbsd Netbsd	Version 1.5
Openbsd Openbsd	Version 2.8
Openbsd Openbsd	Version 2.9
Sun Sunos	Version 5.5.1
Sun Sunos	Version 5.7
Sun Sunos	Version 5.8

References (6)

http://www.securityfocus.com/archive/1/195457

Source: cve@mitre.org

http://www.securityfocus.com/bid/2997

Source: cve@mitre.org

ExploitVendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/6824

Source: cve@mitre.org

http://www.securityfocus.com/archive/1/195457

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/2997

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitVendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/6824

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.