Bugtraq mailing list archives

Re: Windows 95/NT DoS

From: alan () LXORGUK UKUU ORG UK (Alan Cox)
Date: Sun, 11 May 1997 16:40:27 +0100

Not sure why, but it only appears to work if the host is running
netbios (port 139). Attacking another port ie, httpd (port 80) does not
have any effect.


Guessing how the kernel implementation works under NT I'd suspect the kernel
services are providing call back functions and netbios forgot to supply
one for out of bounds data.

That also explains why telnet to NT boxes sort of always works (telnet uses
OOB data sometimes)

Current thread:

Re: Irix: misc, (continued)
- Re: Irix: misc J.A. Gutierrez (May 08)
- Re: Irix: misc Jaechul Choe (May 08)
- SGI Security Advisory 19961203-02-PX - IRIX netprint Program SGI Security Coordinator (May 08)
- Bug Serious problem in NEC SOCKS server Trevor Schroeder (May 09)
  - Re: Bug Serious problem in NEC SOCKS server Matt Bush (May 09)
  - Windows 95/NT DoS myst (May 09)
    - More buffer overrun crap -- Solaris 2.5.1 /usr/bin/ps Joe Zbiciak (May 10)
    - Re: More buffer overrun crap -- Solaris 2.5.1 /usr/bin/ps kevin brintnall (May 10)
    - Re: Windows 95/NT DoS Albert Siersema (May 10)
    - Re: Windows 95/NT DoS DiGennaro (May 10)
    - Re: Windows 95/NT DoS Alan Cox (May 11)
    - OOB Quick Fix Aleph One (May 10)
    - Microsoft PowerPoint Security Fix Aleph One (May 10)
    - Re: Windows 95/NT DoS Mikael Brandstrom (May 10)
- Another bug in Explorer Aleph One (May 09)
- Security Vulnerability on Novell Netware WWW Server Axel Dunkel (May 09)