Microsoft Windows NT 4.0 Remote Registry Request Dos Vulnerability
BID:1331
Info
Microsoft Windows NT 4.0 Remote Registry Request Dos Vulnerability
| Bugtraq ID: | 1331 |
| Class: | Failure to Handle Exceptional Conditions |
| CVE: | |
| Remote: | Yes |
| Local: | Yes |
| Published: | Jun 08 2000 12:00AM |
| Updated: | Jun 08 2000 12:00AM |
| Credit: | Discovered by Renaud Deraison <[email protected]> and publicized in a Microsoft Security Bulletin (MS00-040) on June 9, 2000. |
| Vulnerable: |
Microsoft Windows NT 4.0 |
| Not Vulnerable: |
Microsoft Windows 2000 Professional |
Discussion
Microsoft Windows NT 4.0 Remote Registry Request Dos Vulnerability
In special circumstances while handling requests to access the Remote Registry Server, Windows NT 4.0 can crash due to winlogon.exe's inability to process specially malformed remote registry requests. Rebooting the machine would be required in order to regain normal functionality.
Only authenticated users on the network would be able to exploit this vulnerability. If Windows NT was configured to deny all remote registry requests, it would not be affected by this vulnerability under any conditions.
In special circumstances while handling requests to access the Remote Registry Server, Windows NT 4.0 can crash due to winlogon.exe's inability to process specially malformed remote registry requests. Rebooting the machine would be required in order to regain normal functionality.
Only authenticated users on the network would be able to exploit this vulnerability. If Windows NT was configured to deny all remote registry requests, it would not be affected by this vulnerability under any conditions.