VYPR
← All advisories
Unrated severityNVD Advisory· Published Jun 30, 1999· Updated Apr 16, 2026

CVE-1999-0140

CVE-1999-0140

Description

A denial of service vulnerability in Microsoft NT 4.0's RAS/PPTP service allows a remote attacker to crash the system by sending a malformed control packet.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

A denial of service vulnerability in Microsoft NT 4.0's RAS/PPTP service allows a remote attacker to crash the system by sending a malformed control packet.

Vulnerability

A denial of service vulnerability exists in Microsoft Windows NT 4.0, up to and including Service Pack 4, when the RAS/PPTP service is running. This vulnerability is triggered by sending a malformed control packet to the PPTP service's port.

Exploitation

An attacker can exploit this vulnerability by connecting to port 1723 (the PPTP/VPN service's port) on the target machine. The attacker must then send approximately 256 characters of arbitrary data, followed by a control-d character. This sequence can be initiated via a telnet session to the target machine's port 1723 [1].

Impact

Successful exploitation of this vulnerability causes the target Windows NT 4.0 machine to reboot, resulting in a denial of service for legitimate users. The attacker does not require any special privileges beyond network access to the PPTP port.

Mitigation

Microsoft Windows NT 4.0 systems are affected up to and including Service Pack 4. Information regarding a specific patch or fixed version is not available in the provided references. Users are advised to consult Microsoft for potential workarounds or updated guidance, though this system is long past its end-of-life.

References
  1. Microsoft NT 4.0 RAS/PPTP - Malformed Control Packet Denial of Service

AI Insight generated on Jun 5, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.

Affected products

1

Patches

0

No patches discovered yet.

Vulnerability mechanics

No source-code context for this CVE — mechanics is only generated when we can read the actual fix diff. Without that, the four sections (root cause, attack vector, affected code, fix) would be speculation rather than analysis.

References

1

News mentions

0

No linked articles in our index yet.