RE: DOS attacks using the microsoft-ds protocol

From: Windows Hater (anonymous_at_discussions.microsoft.com)
Date: 05/16/04

• Next message: Sadie: "Sasser question"
• Previous message: Vishal Agarwal[MSFT]: "Re: acceptPKCS7 error : No KeySet..."
• In reply to: junkyard dog: "DOS attacks using the microsoft-ds protocol"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

Date: Sun, 16 May 2004 10:21:03 -0700

Sorry for missing your question junkyard dog. Let me answer your questions...

1. Maybe "Directory Services" or another NetBIOS related service (got that off Google) -- if you can find the leaked source-code for Windows 2000/NT (highly illegal and Microsoft lies about how the leak occured), you can probably find out more if there's anything on it there
2. There are known exploits for it
3. Either you did not search to well or Microsoft just doesn't want you to know what its for -- just another service to create another flaw to be exploited (I couldn't find API documentations on MSDN for NTDLL for example)
4. Probably one of the NetBIOS services. Try playing around with your services and maybe you'll find out. I believe actually that McAfee firewall or whatever, allows you to see what process is listening on what port. I'm unsure, since I last used McAfee 2 years ago

---

• Next message: Sadie: "Sasser question"
• Previous message: Vishal Agarwal[MSFT]: "Re: acceptPKCS7 error : No KeySet..."
• In reply to: junkyard dog: "DOS attacks using the microsoft-ds protocol"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

We are proud to have Web Hosting and Rack Housing from 9 Net Avenue Deutschland.
(11)