CVE-1999-0001

Description

ip_input.c in BSD-derived TCP/IP implementations allows remote attackers to cause a denial of service (crash or hang) via crafted packets.

Affected products

• bsdi / bsd_os3.1 – 3.1
• FreeBSD / FreeBSD1.0 – 1.0
• FreeBSD / FreeBSD1.1 – 1.1
• FreeBSD / FreeBSD1.1.5.1 – 1.1.5.1
• FreeBSD / FreeBSD1.2 – 1.2
• FreeBSD / FreeBSD2.0 – 2.0
• FreeBSD / FreeBSD2.0.1 – 2.0.1
• FreeBSD / FreeBSD2.0.5 – 2.0.5
• FreeBSD / FreeBSD2.1.5 – 2.1.5
• FreeBSD / FreeBSD2.1.6 – 2.1.6
• FreeBSD / FreeBSD2.1.6.1 – 2.1.6.1
• FreeBSD / FreeBSD2.1.7 – 2.1.7
• FreeBSD / FreeBSD2.1.7.1 – 2.1.7.1
• FreeBSD / FreeBSD2.2 – 2.2
• FreeBSD / FreeBSD2.2.2 – 2.2.2
• FreeBSD / FreeBSD2.2.3 – 2.2.3
• FreeBSD / FreeBSD2.2.4 – 2.2.4
• FreeBSD / FreeBSD2.2.5 – 2.2.5
• FreeBSD / FreeBSD2.2.6 – 2.2.6
• FreeBSD / FreeBSD2.2.8 – 2.2.8
• FreeBSD / FreeBSD3.0 – 3.0
• OpenBSD / OpenBSD2.3 – 2.3
• OpenBSD / OpenBSD2.4 – 2.4

References

• MISChttp://www.openbsd.org/errata23.html#tcpfix
• MISChttp://www.osvdb.org/5707