NT crash via extra long username in Winpopup

Summary
Description:You can crash an NT box (possibly W95 too) by sending a very long username in a Winpopup message. This is easy to do from UNIX with 'smbclient -U LOTSandLOTSofcrap -M host'.
Author:Well known.
Compromise:Crash Windows boxes
Vulnerable Systems:Windows NT 4.0 and earlier, fixed in NT 4.0 Service pack 3. Win95 may be vulnerable.
Date:April 1997
Details

Everything you need to know is in the description ;)

-Fyodor

More Exploits!

The master index of all exploits is available here (Very large file)
Or you can pick your favorite operating system:
All OS's Linux Solaris/SunOS Micro$oft
*BSD Macintosh AIX IRIX
ULTRIX/Digital UNIX HP/UX SCO Remote exploits

This page is part of Fyodor's exploit world. For a free program to automate scanning your network for vulnerable hosts and services, check out my network mapping tool, nmap. Or try these Insecure.Org resouces:

[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]