Re: Fix for SMB DOS attack posted

Aleph One (aleph1@DFW.DFW.NET)
Fri, 13 Feb 1998 20:41:46 -0600

On Fri, 13 Feb 1998, Paul Leach wrote:

> A hot-fix for a DOS attack on NT file servers that had not been previously
> publically known has been posted. The following is the KB article on the
> fix.
> DOCUMENT: Q180963
> TITLE :Denial of Service Attack Causes Windows NT Systems to Reboot
> PRODUCT :Microsoft Windows NT
> PROD/VER:4.00
> KEYWORDS:kbbug4.00 kbfix4.00 NTSrv ntstop

Well it would seem some folks have found the problem (or something
similar) before as Oliver Friedrichs from Secure Networks hinted at back
in October on the NTBugTraq mailing list.

Maybe the secnet folks would like to discuss some of their findings.

Aleph One /
KeyID 1024/948FD6B5
Fingerprint EE C9 E8 AA CB AF 09 61 8C 39 EA 47 A8 6A B8 01