• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

Microsoft Windows DHCP Server Logging Remote Denial Of Service Vulnerability

Microsoft Windows DHCP server on NT 4 server platforms is reported susceptible to a remote denial of service vulnerability in its logging functionality. This issue is due to a failure of the application to properly handle user-supplied network input.

This vulnerability allows remote attackers to crash the affected service, denying service to legitimate users. This may allow attackers to interrupt network services to an entire network. It is believed that this issue would only result in a denial of service, though an unconfirmed possibility of code execution exists due to the apparent nature of the vulnerability.

It is noted that the service is not installed by default, nor is the affected logging facility enabled by default where the service has been installed.