SecuriTeam - UDP DoS Attack on Windows 2000 IKE

Security News - Security Reviews - Exploits - Tools - UNIX Focus - Windows Focus

Home
Ask the Team
Mailing Lists
Advertising Info
Advisories
About SecuriTeam
Blogs

Brought to you by:

Suppliers of:

SecuriTeam in Your Inbox

New vulnerability?
New tool?
Tell us
(Our PGP key).

2nd Annual Cyber Security

CONFidence 2012 May 23-24

Hack In Paris

A DoS attack can be carried out on Windows 2000 machines running IKE (Internet Key Exchange) by flooding IKE with UDP packets. This can cause the machine to lock up and use all available CPU.

Credit:
The information has been provided by c0redump.

Free Website Security Scan	Code Vulnerability Test	Network Assessment Tool
Detect hidden vulnerabilities	Exhaustive automated testing	Real-time, continuous security
Get guidance from professionals	of internal or 3rd party code.	scanning for your entire network

Protect your website!
Use an External Vulnerability Scanner!
Nothing to install. First report in 1 hour!
www.beyondsecurity.com/vulnerability-scanner

Exploit:
Connect to UDP port 500 (IKE) of the Win2k box and start sending UDP packets of more than 800 bytes continuously. The box will eventually stop responding and services will be denied due to 99% CPU usage from the packets.

Solution:
Firewall UDP port 500 off whenever a system does not require IPSec.

blog comments powered by Disqus

	Microsoft Office WPS Converter Heap Overflow Vulnerability
	Drupal Windows Local File Inclusion Vulnerability
	Microsoft MSCOMCTL.OCX RCE Vulnerability
	Microsoft Internet ExplorerJScript9 Remote Code Execution Vulnerability
	Microsoft WinVerifyTrust Signature Validation Vulnerability
	Microsoft Unfiltered Access to UAG Default Website Vulnerability
	Microsoft UAG Blind HTTP Redirect Vulnerability
	Microsoft Internet Explorer SelectAll Remote Code Execution Vulnerability
	Microsoft Expression Design Insecure Library Loading Vulnerability
	Microsoft Remote Desktop Protocol Remote Code Execution Vulnerability
	Microsoft Remote Desktop Protocol Service Denial of Service Vulnerability
	Microsoft Visual Studio Add-In Local Privilege Escalation Vulnerability
	Microsoft Windows DNS Server Remote Denial of Service Vulnerability
	Microsoft .NET Framework ASP.NET Forms Authentication Bypass Vulnerability
	Microsoft Internet Explorer Copy and Paste Information Disclosure Vulnerability
	Microsoft Indeo Codec Insecure Library Loading Vulnerability
	Microsoft Color Control Panel Insecure Library Loading Vulnerability
	Microsoft Windows AfdPoll Elevation of Privilege Vulnerability
	Microsoft Internet Explorer VML CDispScroller Remote Code Execution Vulnerability
	'Novell Zenworks Software Packaging LaunchHelp.dll Code Execution Vulnerability'

Featured Articles

	Microsoft .NET Framework ASP.NET Forms Authentication Bypass Vulnerability
	'TrendMicro Control Manager CASProcessor.exe BLOB Code Execution Vulnerability'
	'HP iNode Management Center iNodeMngChecker.exe Code Execution Vulnerability'
	'HP Data Protector Backup Client Service EXEC_SCRIPT Code Execution Vulnerability'
	'Microsoft Internet Explorer Property Change Memory Corruption Vulnerability'
	'Microsoft Office PowerPoint PersistDirectoryEntry Code Execution Vulnerability'
	'CA Total Defense Suite Heartbeat Web Service Code Execution Vulnerability'
	'HP Web Jetadmin Unauthorized Access to Managed Resources Vulnerability'
	'Novell Zenworks Handheld Management ZfHIPCnd.exe Opcode 2 Code Execution Vulnerability'
	'Microsoft Windows Shell Graphics biCompression Buffer Overflow Vulnerability'
	'Microsoft Office PICT Filter Integer Truncation Vulnerability'
	'Microsoft Office Publisher Size Value Heap Corruption Vulnerability'
	'HP Discovery & Dependency Mapping Inventory (DDMI) XSS Vulnerability'
	'HP Insight Management Agents Full Path Disclosure Vulnerability'
	'Novell iPrint Client Netscape/ActiveX printer-state-reasons Code Execution Vulnerability'
	'HP OpenView Network Node Manager nnmRptConfig.exe Code Execution Vulnerability'
	'HP OpenView Network Node Manager nnmRptConfig.exe Vulnerability'
	'Hewlett-Packard Network Node Manager OVutil.dll Code Execution Vulnerability'
	'Symantec IM Manager Administrative Interface LoggedInUsers.lgx Definition File SQL Injection Vulnerabilities'
	'IBM Informix Dynamic Server oninit.exe EXPLAIN Code Execution Vulnerability'

Security News - Security Reviews - Exploits - Tools - UNIX Focus - Windows Focus - Blogs - CVEs