Re: Windows DoS code (jolt2.c)

[bduross () CAC NET (Brian S. DuRoss)]

I tested it on a Cisco 3640 Running IOS 11.3, and the router quite routing
until the exploit was stopped.
----- Original Message -----
From: "Matthew S. Hallacy" <mhallacy () MERCURY XTRATYME COM>
To: <VULN-DEV () SECURITYFOCUS COM>
Sent: Saturday, May 27, 2000 10:36 PM
Subject: Re: Windows DoS code (jolt2.c)

> On Thu, 25 May 2000, Phonix Monkey wrote:
>
> > > Is there any exploit code available yet? It would be handy to be
> > > able to perform some tests and get an idea of which platforms/
> > > applications are affected.
> >
> > Tested against Win98, WinNT4/sp5,6, Win2K.
> >
> > An interesting side note is that minor changes to this packet cause
> > NT4/Win2k (maybe others, not tested) memory use to jump
> > *substantially* (+70 meg non-paged-pool on a machine with 196 mb
> > phys).  There seems to be a hard upper limit, but on machines with
smaller
> > amounts of memory or smaller swapfiles, ramping up the non-paged-pool
this
> > much might lead to a BSOD.
> >
> > .phonix.
>  Egads, I thought i'd try this against my linux laptop, and killed our
> linux router.. i ran it on a machine connected via lan to the router, the
> router connects to 802.11 wireless gear, that my laptop was on. the
> wireless gear was fine, the router was locked hard, i was unable to
> reproduce it afterwards though.. odd. (the screen wouldnt even come out of
> screen blanking mode while locked)
>
>
>
> - poptix