CVE-2006-3880

Name of the Vulnerable Software and Affected Versions Microsoft Windows NT 4.0 Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Small Business Server 2003

Description The issue allows remote attackers to cause a denial of service, specifically an IP stack hang, by sending a continuous stream of packets on TCP port 135 with incorrect TCP header checksums and random numbers in certain TCP header fields. This can be demonstrated using the Achilles Windows Attack Tool. However, Microsoft's investigation, which included code review and attempts to reproduce the issue on multiple fresh installs of various Windows Operating Systems, did not confirm the issue.

Recommendations For Microsoft Windows NT 4.0, consider restricting access to TCP port 135 as a temporary workaround. For Microsoft Windows 2000, consider restricting access to TCP port 135 as a temporary workaround. For Microsoft Windows XP, consider restricting access to TCP port 135 as a temporary workaround. For Microsoft Windows Small Business Server 2003, consider restricting access to TCP port 135 as a temporary workaround. At the moment, there is no information about a newer version that contains a fix for this vulnerability.