Windows 95 and NT Internet-related Exploits - WinPlanet Windows Software Reviews

You are in the: Small Business Computing Channel

ť ECommerce-Guide | Small Business Computing | Webopedia | WinPlanet |Refer-It

Power Search | Tips

In-Depth Reviews

Tips & Tutorials

Browsers

Chat / Conferencing

Desktop Utilities

Development

Internet Apps

Multimedia

OS Service Packs

Productivity Tools

Enter a keyword

Newsletters offering Windows news, articles, tips and reviews.

Partners & Affiliates

Small Business Computing

Ecommerce Guide

Webopedia

WinPlanet

WinPlanet / Tips & Tutorials

Download of the day

• Internet Explorer 8

Most Popular Software Downloads

• Opera

• Internet Explorer 7

• QuickTime for Windows

• Winamp

• Mozilla Firefox 3

• Ad-Aware 2008 Free

• Adobe Flash Player

• Paint Shop Pro

• Adobe Shockwave Player

• AVG Anti-Virus Free

• 7-Zip

Most Popular Software Articles

• Windows Vista Tips & Tricks, Part 1

• Windows Vista: Worthy of the Hype?

• Windows Wireless Zero Configuration: Five Steps to Sanity

Software Reviews

Windows 95 and NT Internet-related Exploits
Windows OOB Bug
Michael Hayman

1. What? A Bug In Windows?

By using a special program, malicious people can crash any Windows 3.11/95/NT machine without a fix that is on the internet. It is done by sending OOB [Out Of Band] data to an established connection with a Windows user. NetBIOS [139] seems to be the most effective since this is a part of Windows, but any port that listens for data can be attacked, like Identd [113]. Apparently Windows doesn't know how to handle OOB, so it panics and crazy things happen. Reports have been heard of everything from Windows dropping carrier to the entire screen turning white. Windows also sometimes has trouble handling anything on a network at all after an attack like this. A reboot usually fixes whatever damage this causes.
(Courtesy of BugTraq)

2. I Have Windows 95. How do I fix this?

Click here to fix all of the known Windows 95 exploits.

3. I Have Windows NT. How do I fix this?

Click here to fix all of the known Windows NT exploits.

4. I Have Windows 3.11. How do I fix this?

Thanks to Tjerk Vonck and EJ for this information:

Find SYSTEM.INI on the boot drive of your computer
Directly under the caption [MSTCP] in SYSTEM.INI insert the following line:
BSDUrgent=0

This is essentially the same thing as the Windows 95 bugfix, and it works well.

5. How do I test to see if I am vulnerable to this bug?

Check out the Yikes! Nuke Checker page, that will let you check to see if your machine can be attacked.

6. How can I tell who is trying to attack me?

Download one of these Port Listeners:

Skream's Port Listener (140 KB) (Port Listener Homepage)
Dr. Bardo's Port Sniffer (97 KB)

Both will tell you the hostnames of people currently connected to your Port 139, which will let you trace the nuking user back to the ISP he uses.

7. Who can I contact with fixes/questions/info?

If you have new information about bugs or fixes, send it to us.

Next: SSPING »

« Previous Page | Next Page »

Contents:
1. Fix All Known Exploits
2. Windows OOB Bug
3. SSPING
4. Teardrop
5. SMURF

Jupitermedia Corporation has two divisions: Jupiterimages and JupiterOnlineMedia

Jupitermedia Corporate Info

Legal Notices, Licensing, Reprints, Permissions, Privacy Policy.
Advertise | Newsletters | Tech Jobs | Shopping | E-mail Offers

Whitepapers and eBooks

Avaya Article: Developing Speech Grammars that Rock, Part 2: Grammar Tuning
Microsoft Partner Portal: Hyper-V Vaults Microsoft into Virtualization Race
Small Business Solution Exchange: The Pros and Cons of Outsourcing Enterprise Emails
Avaya Article: JSR 289: SIP Servlet 1.1 Provides Significant Benefits for SIP Application Developers

Microsoft Article: Build and Run Virtual Machines with Hyper-V Server 2008
Internet.com eBook: Real Life Rails
Internet.com eBook: Best Practices for Developing a Web Site
MORE WHITEPAPERS, EBOOKS, AND ARTICLES

Webcasts

HP Webinar: Virtualization for Business Critical SAP on SQL Server
Microsoft Partner Portal Video: Microsoft Gold Certified Partners Build Successful Practices

Rackspace Hosting Center: Customer Videos
MORE WEBCASTS, PODCASTS, AND VIDEOS

Downloads and eKits

IdeaBlade Download: DevForce EF--Developing for LINQ and the Entity Framework
Microsoft Download: Silverlight 2 SDK
30-Day Trial: SPAMfighter Exchange Module
Iron Speed Designer Application Generator

Microsoft Download: Silverlight 2 Developer Runtime (Windows)
IdeaBlade Download: .NET Programming with DevForce Classic
MORE DOWNLOADS, EKITS, AND FREE TRIALS

Tutorials and Demos

Online Demo: IBM Cognos 8 Business Intelligence Reporting

MORE TUTORIALS, DEMOS AND STEP-BY-STEP GUIDES