• Downloads
  • Threats
    • Adware
    • Browser Hijacking
    • Rogue Anti Spyware
    • Virus
  • Questions and Answers
  • Recover Encrypted Files
  • Free Malware Removal Tools

My AntiSpyware

Free antispyware software, Online Scanners, Instructions on how to remove spyware and malware.

Menu
  • Downloads
  • Threats
    • Adware
    • Browser Hijacking
    • Rogue Anti Spyware
    • Virus
  • Questions and Answers
  • Recover Encrypted Files
  • Free Malware Removal Tools
Home › Exploits & Vulnerabilities › Windows XP SP1 and Windows 2000 DoS vulnerability

Windows XP SP1 and Windows 2000 DoS vulnerability

Myantispyware team November 21, 2005     No Comment    

A potential vulnerability in Windows 2000 Service Pack 4 and Windows XP Service Pack 1 has been publicly revealed by the French Security Incident Response Team. The organisation has drawn the ire of Microsoft by publishing details of a proof-of-concept exploit that targets the vulnerability.

According to the author, a specially crafted request to upnp_getdevicelist can cause services.exe to eat up memory to a point where the target machines virtual memory gets exhausted. As result, user requests like opening a window would slow to the point of not executing at all and precipitating a denial of service attack

Microsoft has admitted that the exploit is genuine. In a security advisory it confirmed the vulnerability with Windows 2000 and Windows XP Service Pack 1. However, Redmond points out that for the exploit to work on XP SP1, the hacker would have to have a valid login although the affected component is accessible by remote users with standard accounts. The company also confirmed that users with XP Service Pack 2 are not affected.

Microsoft is a little tetchy about the release of the exploit saying that it was ‘concerned that this new report of a vulnerability… was not disclosed responsibly, potentially putting computer users at risk’.

Exploits & Vulnerabilities

Author: Myantispyware team

Myantispyware is an information security website created in 2004. Our content is written in collaboration with Cyber Security specialists, IT experts, under the direction of Patrik Holder and Valeri Tchmych, founders of Myantispyware.com.

Leave a Reply Cancel reply




New Guides

Getyu.pro
How to remove Getyu.pro pop-ups (Virus removal guide)
unwanted ads
How to uninstall SkillExplorer app/extension from Mac
Lifferedtrop.top
How to remove Lifferedtrop.top pop-ups (Virus removal guide)
unwanted ads
How to remove ManagerAnalog app/extension from Mac
unwanted ads
How to remove AD&POP Block (Virus removal guide)

Follow US

Search

Useful Guides

DNSChanger
How to remove DNSChanger malware virus [Updated Apr. 2018]
How to reset Google Chrome settings to default
How to reset Mozilla Firefox (Updated Apr. 2018)
How to remove pop-up ads [Chrome, Firefox, IE, Opera, Edge]
Best free malware removal tools
Best Free Malware Removal Tools 2020

Recent Posts

Malicious .biz site and browser vulnerabilities
Protecting kids from spyware, adware and malware
How to show hidden files in Windows
Lock down your browser
IE-SPYAD: Restricted Sites List for Internet Explorer

MYANTISPYWARE.COM

  • About Us
  • Contact Us
  • Privacy Policy

NEED A HELP ?

If you're seeing unwanted pop-ups or ads in your web-browser, you might have an adware installed on your computer. Use the following guide to stop pop-up ads and remove malicious software. Or ask for help here.

Links

  • Downloads
  • Instructions
  • Questions and Answers
  • Free Malware Removal Tools
Copyright © 2004 - 2020 My AntiSpyware - Free antispyware programs and Spyware Removal Instructions.