Solaris 2.5.1 - 'Ping' System Panic (Denial of Service)

Author: Adam Caldwell
type: dos
platform: solaris
port: 
date_added: 1997-06-15  
date_updated: 2017-11-22  
verified: 1  
codes: CVE-1999-1423;OSVDB-935  
tags:   
aliases:   
screenshot_url:   
application_url:   

raw file: 19161.txt  

source: https://www.securityfocus.com/bid/209/info

The ping program is used to assess network connectivity between network devices. A denial of service condition exists in the ping program that may cause the system to panic by sending ping requests to a multicast address through the loopback interface. The system will ping itself; however, the incoming queue pointer is not yet initialized when the packet is received. Thus, the system will panic.

%ping -sv -i 127.0.0.1 224.0.0.1