NT/Win2K Denial of Service via Invalid SMB Field

 
Denial of Service with Invalid SMB Field
Reported June 5 by
Luke Kenneth Casson Leighton

VERSIONS EFFECTED
Windows NT 4.0
  • Windows 2000
  • DESCRIPTION

    If a DCE/RPC request is encapsulated inside an SMB request along with an invalid data length field the system will crash where a reboot is necessary to restore functionality.

    VENDOR RESPONSE

    Microsoft is aware of this matter, however no response was known at the time of this writing.

    CREDITS
    Discovered and reported by Luke Kenneth Casson Leighton

    Hide comments

    Comments

    • Allowed HTML tags: <em> <strong> <blockquote> <br> <p>

    Plain text

    • No HTML tags allowed.
    • Web page addresses and e-mail addresses turn into links automatically.
    • Lines and paragraphs break automatically.
    Publish