RE: smbdie - GUI remote smb DoS tool

From: Dozal, Tim (tdozal@cisco.com)
Date: 08/29/02 

Date: Thu, 29 Aug 2002 14:33:12 -0700
From: "Dozal, Tim" <tdozal@cisco.com>
To: "shawn merdinger" <shawnmer@io.com>, <security-basics@securityfocus.com>

Shutting down a service doesn't seem like the best response here, I
would say this tool just acts as a catalyst for people to actively go to
MS and apply the associated security patch for the SMB buffer overflow
vulnerability.

Tim

-----Original Message-----
From: shawn merdinger [mailto:shawnmer@io.com]
Sent: Wednesday, August 28, 2002 8:51 AM
To: security-basics@securityfocus.com
Subject: smbdie - GUI remote smb DoS tool

fyi,

Yet another reason to disable netbios. This tool runs on Windows and
has a GUI interface. Windows machines w/ SMB (port 139) access will
reboot instantly.

Tool is here: http://packetstormsecurity.org/0208-exploits/SMBdie.zip

-scm

Relevant Pages

  • Quick HOWTO: Configuring CUPS To Print On A Windows Printer Using smb
    ... I have several situations where I need to be able to configure FreeBSD ... servers to print on printers hosted on Windows machines (i.e., ... via the smb protocol). ...
    (comp.unix.bsd.freebsd.misc)
  • Re: Samba Question
    ... the software to make the 3000 act in a "server role" on an SMB or CIFS network, i.e. Linux or Windows machines can ... which allows a 3000 to access an SMB or CIFS server share in a client role... ...
    (comp.sys.hp.mpe)
  • Re: Samba
    ... All of the Windows machines can see the Linux machines while none of the ... Linux machines can see any Windows machine. ... All Linux firewalls are set for external on NFS, SMB, HTTP, etc. ...
    (alt.os.linux.suse)
  • Re: smbdie - GUI remote smb DoS tool
    ... > a GUI interface. ... Windows machines w/ SMB (port 139) access will reboot ...
    (Security-Basics)