3 results (0.006 seconds)

CVSS: 7.5EPSS: 0%CPEs: 10EXPL: 0

Multihomed Windows systems allow a remote attacker to bypass IP source routing restrictions via a malformed packet with IP options, aka the "Spoofed Route Pointer" vulnerability. • http://support.microsoft.com/default.aspx?scid=kb%3B%5BLN%5D%3BQ238453 http://www.securityfocus.com/bid/646 https://docs.microsoft.com/en-us/security-updates/securitybulletins/1999/ms99-038 • CWE-264: Permissions, Privileges, and Access Controls •

CVSS: 7.5EPSS: 1%CPEs: 6EXPL: 1

DHCP clients with ICMP Router Discovery Protocol (IRDP) enabled allow remote attackers to modify their default routes. • https://www.exploit-db.com/exploits/19451 http://support.microsoft.com/default.aspx?scid=kb%3B%5BLN%5D%3BQ216141 http://www.securityfocus.com/bid/578 • CWE-16: Configuration •

CVSS: 5.0EPSS: 1%CPEs: 8EXPL: 0

A later variation on the Teardrop IP denial of service attack, a.k.a. Teardrop-2. • http://www.securityfocus.com/bid/80175 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5743 •