UDP Ping-pong in Win2k

["FX, Phenoelit" <dev () PHENOELIT DE>]

Sorry if this is already well-known.

Windows 2000 server with an open UDP Kerberos v5 port (464) is
vulnerable to a UDP ping-pong attack where you send a packet with
someone elses IP address and chargen source port to it. Drives CPU usage
on my test system to approx. 70%.
AFAIK affected systems: Win2k server running AD.

Could someone confirm this? I don't want to email MS to discover that
I'm to stupid to configure my Win2k. Any response is highly appreciated.

Regards
FX
--
dev       <dev () phenoelit de>
Phenoelit (http://www.phenoelit.de)