Re: Crashing Win9x with smbclient - But NT & W2K?

[magusbaal () MINDSPRING COM (Magus Ba'al)]

I have tried it on Win2K Professional, Server and Advanced Server and could
NOT get the con/con (or any other for that matter) to crash, blue screen,
affect the system in anyway (such as memory usage, memory usage, response
time, etc.), or at least noticably anyway, I've been testing it for the past
few days and I haven't had to restart the boxes at all.

"He who fights with monsters should look to it that he himself does not
become a monster...when you gaze long into the abyss the abyss also gazes
into you." -Friedrich Nietzsche

"Push and you will find resistance, lead and you will find followers" -
Unknown Author

----- Original Message -----
From: "Bluefish" <11a () GMX NET>
To: <VULN-DEV () SECURITYFOCUS COM>
Sent: Sunday, March 26, 2000 10:01 PM
Subject: Crashing Win9x with smbclient - But NT & W2K?

> The exploit of con\con has so far only been adressed to the singleuser
> versions of Windows (Win9x), but a quite more interresting topic is
> weather the attack can be carried out on NT and Win2k systems.
>
> My idea is that initial testings might incorrectly lead to the assumption
> that those systems were invulnerable because NT typically use NTFS and the
> bug was related to the VFAT module. Could be interresting to know if
> someone with access to different NT/Win2K builds could test if there's any
> problem with asking for e.g. d:\con\con if d: is your VFAT partion.
>
> (sorry, don't have NT installed on any of my machines)
>
> ..:::::::::::::::::::::::::::::::::::::::::::::::::..
>      http://www.11a.nu || http://bluefish.11a.nu
>     eleventh alliance development & security team