Microsoft Windows 9x / NT 4.0 ARP Spoofing Vulnerability

Windows 9x and NT 4.0 do not properly handle spoofed ARP packets sent out on a network. Windows will update the ARP table with static entries based on information from other hosts. Existing static entries can be remotely overwritten in this manner. In this way, an attacker could reroute traffic intended for specific hosts to any other machine on the same subnet as the target.


 

Privacy Statement
Copyright 2010, SecurityFocus