RE: bug w2k

From: Eugene Bodenstein (evgenyat_private)
Date: Tue Jul 31 2001 - 03:33:28 PDT

Next message: Tony Lambiris: "RE: WindowMaker bug"

Previous message: Dawes, Rogan (ZA - Johannesburg): "RE: Telnetd AYT overflow scanner and linux telnet 0.17"
In reply to: kam: "Re: bug w2k"
Next in thread: Corwin, George: "RE: bug w2k"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

It works on w2k Advanced Server, Pro, Server, sp1/sp2, nt4/sp6, with and
without administration rights.
It works on gost w2k on vmware.
It doesn'n work on Whistler 64 bit Beta 1, XP Pro beta 1, XP pro RC1.
(Seems to they fixed this bug)
It doesn't attached to ping only.
Can it be some kind of bouffer overflow?

Eugene Bodenstein
Computer Associates
Network Administrator
tel: +972-4-959-0660
fax:+972-4-959-0661
bodeu01at_private



-----Original Message-----
From: kam [mailto:kamat_private] 
Sent: Monday, July 30, 2001 7:23 PM
To: vuln-devat_private
Subject: Re: bug w2k


I've been able to make it work using both an administrator account and a
non-administrator account. (That is, a user account with administrator
privlleges, and one without.)

Windows 2K 5.00.2195
SP 2
Hotfixes current.

kam


----- Original Message -----
From: "Mark Saum" <msaumat_private>
To: <VULN-DEVat_private>
Sent: Saturday, July 28, 2001 4:37 PM
Subject: RE: bug w2k


> I've verified this to work on Win2K Pro SP2.  It took 3 F7s and my 
> system hard-booted as if I had hit the reset button.
>
> On a Win2K Server SP2 on a terminal session (administrator mode) it
doesn't
> crash the box.  However:
>  - You can create a "cmd.exe" session that is unkillable
>  - You can't log off that session
>  - You can't kill that session or "cmd.exe" process from the console
> (taskmgr.exe)
>  - You can't log the user off from Terminal Services Manager
>  - You can't create another instance of "cmd.exe" in that terminal 
> session
>  - A reboot is required to kill the session.
>
> Regards,
>
> Mark Saum
>
> Fidelis Consulting Corporation
> Dallas, TX
>
> -----Original Message-----
> From: SIFFREDI DANIEL [mailto:DSIFFREDI@nacion-afjp.com.ar]
> Sent: Friday, July 27, 2001 2:45 PM
> To: 'bugtraqat_private'
> Subject: bug w2k
>
>
> Hello, this is a new bug found in W2K in all flavors, works with all
levels
> of users.
>
> Here is the proof of concept:
>
> Open a Cmd Window
> Ping to any host (for example ping 10.100.2.1 preferred a host in your
LAN),
> no switch needed. Just ping
> Now press F7 and Enter (try a couple of times quickly...less than ten 
> ,
and
> you can see what a meaning)
> The machine reboots, from nothing a warm reboot.
> Please let me know if you have the same bug. I tried this in W2k sp2
English
> and Spanish.
>
>
> Daniel Siffredi
> Administrador de Red de Microinformatica.
> Nacion AFJP SA
>
>

Next message: Tony Lambiris: "RE: WindowMaker bug"
Previous message: Dawes, Rogan (ZA - Johannesburg): "RE: Telnetd AYT overflow scanner and linux telnet 0.17"
In reply to: kam: "Re: bug w2k"
Next in thread: Corwin, George: "RE: bug w2k"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Tue Jul 31 2001 - 09:20:15 PDT