Vulnerability Development mailing list archives
UDP Ping-pong in Win2k
From: "FX, Phenoelit" <dev () PHENOELIT DE>
Date: Sat, 2 Dec 2000 14:04:43 +0100
Sorry if this is already well-known. Windows 2000 server with an open UDP Kerberos v5 port (464) is vulnerable to a UDP ping-pong attack where you send a packet with someone elses IP address and chargen source port to it. Drives CPU usage on my test system to approx. 70%. AFAIK affected systems: Win2k server running AD. Could someone confirm this? I don't want to email MS to discover that I'm to stupid to configure my Win2k. Any response is highly appreciated. Regards FX -- dev <dev () phenoelit de> Phenoelit (http://www.phenoelit.de)
Current thread:
- UDP Ping-pong in Win2k FX, Phenoelit (Dec 04)