Microsoft Security Bulletin MS00-029 announces the availability of a patch that eliminates a vulnerability in Microsoft® Windows® 95, Windows 98, Windows NT® 4.0 and Windows 2000.
What´s the scope of the vulnerability?
This is a denial of service vulnerability. If a malicious user sent IP fragments with a particular type of malformation, even at a relatively moderate rate, it could prevent an affected machine from performing useful service.
There is no capability through this vulnerability to compromise data or usurp administrative control on an affected machine. The effect of the vulnerability would only last as long as the malformed data was sent; as soon as the attack ceased, the machine would return to normal operation.
Read more
What´s the scope of the vulnerability?
This is a denial of service vulnerability. If a malicious user sent IP fragments with a particular type of malformation, even at a relatively moderate rate, it could prevent an affected machine from performing useful service.
There is no capability through this vulnerability to compromise data or usurp administrative control on an affected machine. The effect of the vulnerability would only last as long as the malformed data was sent; as soon as the attack ceased, the machine would return to normal operation.
Read more
