Skip navigation
Menu
End-User Platforms>Windows 7/8

Denial of Service in Windows Terminal Services

Reported October 19, 2001, by Microsoft.

VERSIONS AFFECTED

All systems running Microsoft Terminal Services, including:

  • Microsoft Windows 2000 Server

  • Microsoft Windows 2000 Advanced Server

  • Microsoft Windows 2000 Datacenter Server

  • Microsoft Windows NT 4.0 Terminal Server Edition

 

DESCRIPTION
A vulnerability exists in WTS and Win2K RDP service that can result in a Denial of Service (DoS) attack. The attack results from a problem in the service that doesn't properly handle a particular series of data packets. To cause the service to fail, an attacker wouldn't have to connect to the service but only send this series of data packets to the port on which RDP was listening.

 

VENDOR RESPONSE

The vendor, Microsoft, has released security bulletin MS01-052 to address this vulnerability and recommends that affected users apply the patch at listed URL. Win2K Datacenter patches are hardware specific and will be available from the OEM when they are ready.

 

CREDIT
Discovered by Luciano Martins of Deloitte & Touche Argentina.

TAGS: Security
Hide comments

More information about text formats

Comments

  • Allowed HTML tags: <em> <strong> <blockquote> <br> <p>

Plain text

  • No HTML tags allowed.
  • Web page addresses and e-mail addresses turn into links automatically.
  • Lines and paragraphs break automatically.
Publish
Recommended Reading
PowerShell screenshot shows Where-Object cmdlet
How to Use the PowerShell Where-Object Cmdlet
Aug 04, 2022
shield_icon_laptop.jpg
What To Do When Windows Defender Is Not Working
Mar 15, 2022
Computer Screen Showing Password Dialog Box
Microsoft Edge Downloads Updated for Azure AD Sign-In & Sync
Aug 22, 2019
mktg-wp-nolabel5
How to Approach the Windows 7 to 10 Migration
Aug 01, 2019