Skip navigation

Windows 2000 Telnet Service Subject to DoS

 
Windows 2000 Telnet Service Subject to DoS
Reported June 30 by Max Degtyar, Mike Murray, and Richard Reiner of SecureXpert Labs.

VERSIONS EFFECTED
Windows 2000 Telnet Service

DESCRIPTION

Windows 2000 telnet service can be made to crash by sending a stream of binary zeros.

DEMONSTRATION

Test the bug by using a tool such as netcat along with an input of /dev/zero. For example, the following netcat command will perform the demonstration:

nc  target.host  23  <  /dev/zero

VENDOR RESPONSE

According to the discoverers, Microsoft is working to create a fix for the problem.

 

Hide comments

Comments

  • Allowed HTML tags: <em> <strong> <blockquote> <br> <p>

Plain text

  • No HTML tags allowed.
  • Web page addresses and e-mail addresses turn into links automatically.
  • Lines and paragraphs break automatically.
Publish