Go to the Softpedia homepage


NEWS CATEGORIES:



NEWS ARCHIVE >>
SOFTPEDIA REVIEWS >>
Home / News / Microsoft

Microsoft

Windows Zero Day Attack Disables Firewall

The NAT Helper Components (ipnathlp.dll) 0day Remote DoS Exploit

By Marius Oiaga, Technology News Editor

31st of October 2006, 13:52 GMT

Adjust text size:


With the computer's line of defense compromised, ensuing attacks will exploit the situation to fully compromise an exposed system. Reports have emerged from the detection of proof of concept code
in the wild for a vulnerability inherent to Windows XP machines running Windows Internet Connection Service.

"We have received a report that a DoS exploit has been released that targets ipnathlp.dll, which is used by the Windows Firewall/Internet Connection Sharing (ICS) service. We also received a report that the exploit works against a fully patched XP SP2 system (Tyler Reguly of nCircle / blogs.nCircle.com submitted the report, some of his report information is below)," revealed SANS Internet Storm Center.

The NAT Helper Components (ipnathlp.dll) 0day Remote DoS Exploit is connected to Windows XP systems with Internet Connection Sharing. An attacker on the shared interface can disable the Windows Firewall. In the case of a successful attack, the operating system will display the following message: "Generic Host Process for Win32 Services has encountered a problem and needs to close. We are sorry for the inconvenience." The vulnerability was confirmed on fully patched Windows XP Service Pack 2 systems. Microsoft has failed to comment the reports as yet.


Rating:
Fair (2.8/5) 5 vote(s) so far    

Read by 3,074 user(s) | Add comment | Link to this article
Subscribe to news | Print article | Send to friend

© Copyright 2001-2008 Softpedia
Contact:

 

 

SEARCH THE NEWS ARCHIVE :




Today's News | Yesterday's News | News Archive


MORE RELATED ARTICLES:


Microsoft Warns of Websites Exploiting the Windows Shell Vulnerability

PoC Published for Critical PowerPoint Vulnerability

Microsoft Denies Internet Explorer 7 Vulnerability

Microsoft Has Updated IE7 Quick Reference Sheet

Microsoft to Debut Automatic Update Distribution of IE7 by November 1

IE7 High Assurance

IE7 - Three Million Downloads in the First Four Days

What Is Microsoft Centro?

Microsoft Confirms Second IE7 Vulnerability

Internet Explorer 7 Kills Outlook Hotmail Integration

Firefox 2.0 - 2 Million Downloads on the First Day

IE7 and Firefox 2.0 Share Vulnerabilities

User opinions:

No user comments yet.
Be the first to express your opinion using the form below!

Share your opinion:

Your Name:
Your Email Address:
(will not be used for commercial purposes)
Solve this to prove you're not a bot: =
Your review/opinion:

 






SUBMIT PROGRAM   |   ADVERTISE   |   GET HELP   |   SEND US FEEDBACK   |   RSS FEEDS   |   ENTER NEWS SITE   |   ENGLISH BOARD   |   ROMANIAN FORUM
© 2001 - 2008 Softpedia. All rights reserved.
Softpedia™ and the Softpedia™ logo are registered trademarks of SoftNews NET SRL.		 Copyright Information | Privacy Policy | Terms of Use | Update your software | Archive