Microsoft Security Bulletin MS00-040 announces the availability of a patch that eliminates a vulnerability in Microsoft® Windows NT 4.0.
What's the scope of the vulnerability?
This vulnerability could allow denial of service attacks against a Windows NT 4.0 machine. If a malicious user sent an affected machine a particular type of malformed request for remote registry access, it could cause Windows NT 4.0 to fail.
Under default conditions, only authenticated users users with an account and password on the network -- could exploit this vulnerability. If a machine has been configured to deny all registry access requests, it would not be affected by this vulnerability under any conditions. An affected machine could be put back into service by rebooting.
Read more
What's the scope of the vulnerability?
This vulnerability could allow denial of service attacks against a Windows NT 4.0 machine. If a malicious user sent an affected machine a particular type of malformed request for remote registry access, it could cause Windows NT 4.0 to fail.
Under default conditions, only authenticated users users with an account and password on the network -- could exploit this vulnerability. If a machine has been configured to deny all registry access requests, it would not be affected by this vulnerability under any conditions. An affected machine could be put back into service by rebooting.
Read more
