|
| TC: | 12002 | |
| Description: | A feature exists in the TCP protocol where it is possible to send data including 'urgent' information. The destination system is supposed to handle the urgent information 'out of band', for example through a special signal. Windows NT will crash if you send Out of Band (MSG_OOB) data (followed by no regular data) to its port 139. Win95 will display a blue screen and network connectivity is usually lost; applications may crash. Win 3.11 with MS TCP stack crashes too. Other ports such as MS DNS may also be affected. | |
| TC Impact: | Crash |
| Vulnerability Publication: | May 07, 1997 | |
| Advisory Copyright: | Unknown | |
| Summary: | An attacker can use a widely available underground 'WinNuke attack' tool or very simple underground web forms to send a misinterpreted packet to your system and remotely crash it. | |
| Risk: | Medium | |
| CVSS 2.0 metrics: | Access Vector: Network Access Complexity: Low Authentication: None Confidentiality Impact: None Integrity Impact: None Availability Impact: Partial | |
| CVSS 2.0 Base Score: | 5.0 |
| Vulnerability Impact: |
Denial of Service |
|---|
| Host Impact: | Vulnerable systems will crash. | |
| Nature of Remediation: | Update the operating system. See the Update OS procedure. |
| Step required to fix the reported vulnerability: | |
***** Solution type: Undefined ***** For Windows NT servers, Microsoft recommends that you install Windows NT 4 Service Pack 4 (SP4) or later to correct this problem. |
| References: | ||
| Detailed description at http://ciac.llnl.gov/ciac/bulletins/h-57.shtml on the CIAC Web site. See the Q143478 article at http://support.microsoft.com/support/kb/articles/q143/4/78.asp on the Microsoft Web site. Source code at http://www.rootshell.com/archive-j457nxiqi3gq59dv/199707/nuke.c.html on the Rootshell Web site. See also: http://www.securityfocus.com/bid/2010. |
| CVE Link: |
CVE-1999-0153 |
 |
|---|
| Glossary: |
DNS Out of Band Packet Port TCP TCP/IP Stack |
|---|