CVE-2001-1533

CVE Database · CVE-2001-1533

CVE-2001-1533

· MEDIUMModified

CVSS v3.1

5.3

EPSS

18.01%

Published

Dec 31, 2001

Modified

Apr 15, 2026

Public PoC / Exploit (1)

All weaponized →

TrickestTrickest PoC index

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Microsoft Internet Security and Acceleration (ISA) Server 2000 allows remote attackers to cause a denial of service via a flood of fragmented UDP packets. NOTE: the vendor disputes this issue, saying that it requires high bandwidth to exploit, and the server does not experience any instability. Therefore this "laws of physics" issue might not be included in CVE

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected Products (1)

microsoft · isa_servervulnerable

References (8)

http://cert.uni-stuttgart.de/archive/bugtraq/2001/11/msg00018.html

http://cert.uni-stuttgart.de/archive/bugtraq/2001/11/msg00031.html

http://www.iss.net/security_center/static/7446.php

http://www.securityfocus.com/bid/3501

http://cert.uni-stuttgart.de/archive/bugtraq/2001/11/msg00018.html

http://cert.uni-stuttgart.de/archive/bugtraq/2001/11/msg00031.html

http://www.iss.net/security_center/static/7446.php

http://www.securityfocus.com/bid/3501

KEV Catalog EPSS Scores Vendors All CVEs