Bugtraq mailing list archives

Re: Fix for SMB DOS attack posted

From: aleph1 () DFW DFW NET (Aleph One)
Date: Fri, 13 Feb 1998 20:41:46 -0600


On Fri, 13 Feb 1998, Paul Leach wrote:

A hot-fix for a DOS attack on NT file servers that had not been previously
publically known has been posted. The following is the KB article on the
fix.

DOCUMENT: Q180963
TITLE   :Denial of Service Attack Causes Windows NT Systems to Reboot
PRODUCT :Microsoft Windows NT
PROD/VER:4.00
OPER/SYS:WINDOWS
KEYWORDS:kbbug4.00 kbfix4.00 NTSrv ntstop


Well it would seem some folks have found the problem (or something
similar) before as Oliver Friedrichs from Secure Networks hinted at back
in October on the NTBugTraq mailing list.

http://listserv.ntbugtraq.com/SCRIPTS/WA-NTBT.EXE?A2=ind9710&L=ntbugtraq&m=791&P=4201

Maybe the secnet folks would like to discuss some of their findings.

Aleph One / aleph1 () dfw net
http://underground.org/
KeyID 1024/948FD6B5
Fingerprint EE C9 E8 AA CB AF 09 61  8C 39 EA 47 A8 6A B8 01

Current thread:

Re: Fix for SMB DOS attack posted David LeBlanc (Feb 13)
- <Possible follow-ups>
- Fix for SMB DOS attack posted Paul Leach (Feb 13)
  - Re: Fix for SMB DOS attack posted Aleph One (Feb 13)
- Re: Fix for SMB DOS attack posted Paul Leach (Feb 13)