Bugtraq mailing list archives

Re: Windows 95/NT DoS

From: frank () BIGDOG FRED NET (DiGennaro)
Date: Sat, 10 May 1997 16:55:44 -0400


On Sat, 10 May 1997, Albert Siersema wrote:

        It is possible to remotely cause denial of service to any windows
95/NT user.  It is done by sending OOB [Out Of Band] data to an


You're right. This is VERY serious. I've tested it on NT machines with SP2
and most hotfixes installed.

It's even worse: the NT machine reboots so it should come up again, but
when it does, all memory (physical and virtual) is consumed.
(from the previous memory dump ?)
Only a proper shutdown and restart fixes this.

I think this is a seperate bug, but nevertheless again: OH NO !


Not sure why, but it only appears to work if the host is running
netbios (port 139). Attacking another port ie, httpd (port 80) does not
have any effect.

Frank DiGennaro         frank () bigdog fred net
        The more people I meet in life, the more I appreciate
spending time with my pets.

Current thread:

Irix: misc Yuri Volobuev (May 07)
- Re: Irix: misc J.A. Gutierrez (May 08)
- Re: Irix: misc Jaechul Choe (May 08)
- SGI Security Advisory 19961203-02-PX - IRIX netprint Program SGI Security Coordinator (May 08)
- Bug Serious problem in NEC SOCKS server Trevor Schroeder (May 09)
  - Re: Bug Serious problem in NEC SOCKS server Matt Bush (May 09)
  - Windows 95/NT DoS myst (May 09)
    - More buffer overrun crap -- Solaris 2.5.1 /usr/bin/ps Joe Zbiciak (May 10)
    - Re: More buffer overrun crap -- Solaris 2.5.1 /usr/bin/ps kevin brintnall (May 10)
    - Re: Windows 95/NT DoS Albert Siersema (May 10)
    - Re: Windows 95/NT DoS DiGennaro (May 10)
    - Re: Windows 95/NT DoS Alan Cox (May 11)
    - OOB Quick Fix Aleph One (May 10)
    - Microsoft PowerPoint Security Fix Aleph One (May 10)
    - Re: Windows 95/NT DoS Mikael Brandstrom (May 10)
- Another bug in Explorer Aleph One (May 09)
- Security Vulnerability on Novell Netware WWW Server Axel Dunkel (May 09)