[4109] in WWW Security List Archive
Re: FW: NT4 bug? Or bug in my hardware?
daemon@ATHENA.MIT.EDU (bracha@eye-on.co.il)
Sun Jan 26 15:34:54 1997
Date: Sun, 26 Jan 1997 20:40:07 +0200
From: bracha@eye-on.co.il
To: "Phillip M. Hallam-Baker" <hallam@ai.mit.edu>
CC: "'Tom Vandepoel'" <tom@netvision.be>,
"Jason T. Luttgens" <luttgenj@kic.or.jp>,
"www-security@ns2.rutgers.edu" <www-security@ns2.rutgers.edu>
Errors-To: owner-www-security@ns2.rutgers.edu
Phillip M. Hallam-Baker wrote:
>
> Jason T. Luttgens wrote:
> >
> > Can anyone confirm this? On an NT4 server (maybe workstation too, I don't have it to try),
> > if you telnet to port 135, type a bunch of junk (say 10-20 characters), hit enter and disconnect,
> > the server's processor utilization will go up to 100%!!! The only fix I found was to reboot.
> > I tried with and without SP2.....same result. The installation is 'out of the box' with standard
> > default install options, of course including TCP/IP. I have no other NT4 servers to try this on
> > and was wondering if I could get someone to try and confirm this .....
> >
> Yeh, it works. And it just keeps on going.
> Another great reason to switch to linux...
>
> Site system security officers can implement a partial protection
> against this problem by implementing router level filtering.
>
> The proper place to discuss system issues like this is in lists like
> BUGTRAQ which are there for the purpose. The current state of knowledge
> is that it appears to be a problem for all versions of NT and there is
> not yet a fix.
>
> Linux advocates should note that their system is not without sin. The
> ping 'o death and crontab issues having recently come up.
>
> Phill
Take me off this dumb list!!!!!Take me off this dumb list!!!!!Take me
off this dumb list!!!!!Take me off this dumb list!!!!!Take me off this
dumb list!!!!!
