Detections
Analytics
Multiple Vendor Out Of Band Data DoS (WinNuke)
medium Nessus Plugin ID 10314
Synopsis
The remote service is vulnerable to denial of service.Description
It was possible to crash the remote host using the 'Winnuke' attack, that is to send an OOB message to this port.An attacker may use this flaw to make this host crash continuously, preventing the system from working properly.
Solution
http://support.microsoft.com/default.aspx?scid=kb;EN-US;179129See Also
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2002-10/att-0333/01-winnuke.c
Plugin Details
Severity: Medium
ID: 10314
File Name: winnuke.nasl
Version: 1.30
Type: remote
Family: Denial of Service
Published: 6/22/1999
Updated: 8/6/2018
Configuration: Enable paranoid mode
Supported Sensors: Nessus
Risk Information
VPR
Risk Factor: Medium
Score: 4.4
CVSS v2
Risk Factor: Medium
Base Score: 5
Temporal Score: 3.9
Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P
Vulnerability Information
Required KB Items: Settings/ParanoidReport
Exploit Available: true
Exploit Ease: Exploits are available
Vulnerability Publication Date: 5/7/1997
Reference Information
CVE: CVE-1999-0153
BID: 2010