A summary of the replies from people testing the oshare program against different versions of Windows: Reported Vulnerable (Crash): Windows 95 Nicu Pavel <panicat_private> Windows 95 "C.J. Oster" <lordvadrat_private> Windows 95 + USB kpavlovat_private Windows 95 OSR2 Nicu Pavel <panicat_private> Windows 95 Japanese sen_mlat_private Windows 95 DK attack from Linux 2.2.0, 2.0.36 and SunOS 4.1.4 ninoat_private Windows 95 UK attack from Linux 2.2.0, 2.0.36 and SunOS 4.1.4 ninoat_private Windows 98 Nicu Pavel <panicat_private> Windows 98 maniacat_private Windows 98 Japanese sen_mlat_private Windows 98 UK attack from Linux 2.2.0, 2.0.36 and SunOS 4.1.4 ninoat_private Reported Vulnerable (Frozen, no BSOD): Windows 98 4.10.1998 all windowsupdate patches. Launched attack from Linux. "Keith Warno" <keith.warnoat_private> Reported Vulnerable (Frozen until packets stop): Windows 98 "C.J. Oster" <lordvadrat_private> Windows 98 Vanja Hrustic <vanjaat_private> Reported Not Vulnerable: Windows 98 English sen_mlat_private Windows 98 tested from Linux tsdat_private Window NT 4.0 SP3 maniacat_private Windows NT 4.0 SP4 Japanese sen_mlat_private Linux 2.0.36 maniacat_private Someone also mentioned that Linux (2.0.36) replaces the ip total length field with 40, the actual ip-packet length (as seen by pcap). -- Aleph One / aleph1at_private http://underground.org/ KeyID 1024/948FD6B5 Fingerprint EE C9 E8 AA CB AF 09 61 8C 39 EA 47 A8 6A B8 01
This archive was generated by hypermail 2b30 : Fri Apr 13 2001 - 14:31:47 PDT