NT and Win2K SMB-based Denial of Service

 
NT and Win2K SMB-based Denial of Service
Reported June 5 by
Luke Kenneth Casson Leighton

VERSIONS EFFECTED
Windows NT 4.0
  • Windows 2000
  • DESCRIPTION

    Sending SMB requests to an NT or Windows 2000 system without acknowledging those requests will causes denial of service conditions against the system.

    If the unacknowledged packets are sent to an NT 4.0 system then that system will stop responding to all TCP/IP traffic until the system has become rebooted.

    If the unacknowledged packets are sent to a Windows 2000 system, that system will not respond to SMB traffic while the faulty session sending the unacknowleded packets persists. Normal system operation ensues 20 seconds after the offending session terminates.

    VENDOR RESPONSE

    Microsoft is aware of this matter, however no response was known at the time of this writing.

    CREDITS
    Discovered and reported by Luke Kenneth Casson Leighton

    Hide comments

    Comments

    • Allowed HTML tags: <em> <strong> <blockquote> <br> <p>

    Plain text

    • No HTML tags allowed.
    • Web page addresses and e-mail addresses turn into links automatically.
    • Lines and paragraphs break automatically.
    Publish