Microsoft Windows SynAttackProtect Predictable Hash Remote Denial of Service Vulnerability

Microsoft Windows SynAttackProtect Predictable Hash Remote Denial of Service Vulnerability

Microsoft Windows is prone to a denial of service vulnerability.

The vulnerability arises due to a design error in the function responsible for the hash table management for 'SynAttackProtect'. Reports indicate that the affected function used by the TCP/IP stack creates a predictable hash, allowing an attacker to send a large number of SYN packets with an identical hash value.

A successful attack can eventually lead to a denial of service condition due to the lookup algorithm becoming very inefficient at performing searches.