TCP/IP IP Fragmentation Remote DoS (bonk)

This script is Copyright (C) 1999-2014 Tenable Network Security, Inc.


Synopsis :

The operating system on the remote host has a denial of service
vulnerability.

Description :

It was possible to make the remote server crash using the 'bonk'
attack. This is due to a design flaw in the remote operating system's
TCP/IP implementation.

An attacker may use this flaw to shut down this server, thus
preventing the network from working properly.

See also :

http://marc.info/?l=bugtraq&m=88429524325956&w=2

Solution :

Contact the operating system vendor for a patch.

Risk factor :

High / CVSS Base Score : 7.8
(CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C)

Family: Denial of Service

Nessus Plugin ID: 10030 (bonk.nasl)

Bugtraq ID:

CVE ID: CVE-1999-0258