CVE-1999-1291

TCP/IP implementation in Microsoft Windows 95, Windows NT 4.0, and possibly others, allows remote attackers to reset connections by forcing a reset (RST) via a PSH ACK or other means, obtaining the target's last sequence number from the resulting packet, then spoofing a reset to the target.

Published: Oct 5, 1998
Updated: Apr 13, 2023
CVE: CVE-1999-1291
Severity: Medium
Exploit:

CVSS v2:

Severity: Medium
Score: 5
AV:N/AC:L/Au:N/C:N/I:N/A:P

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
microsoft / windows_nt	4.0	4.0.x
microsoft / windows_95	-	-

http://www.securityfocus.com/archive/1/10789
https://exchange.xforce.ibmcloud.com/vulnerabilities/1383

Vulnerability Database

289,697

CVE-1999-1291