Microsoft Windows NT 4.0/2000 – LPC Zone Memory Depletion Denial of Service

Microsoft Windows NT 4.0/2000 – LPC Zone Memory Depletion Denial of Service

漏洞ID 1053466 漏洞类型
发布时间 2000-10-03 更新时间 2000-10-03
图片[1]-Microsoft Windows NT 4.0/2000 – LPC Zone Memory Depletion Denial of Service-安全小百科CVE编号 N/A
图片[2]-Microsoft Windows NT 4.0/2000 – LPC Zone Memory Depletion Denial of Service-安全小百科CNNVD-ID N/A
漏洞平台 Windows CVSS评分 N/A
|漏洞来源
https://www.exploit-db.com/exploits/20255
|漏洞详情
漏洞细节尚未披露
|漏洞EXP
source: http://www.securityfocus.com/bid/1745/info

LPC (Local Procedure Call) is a message-passing service that allows threads and processes to communicate with each other on a local machine as opposed to RPC (Remote Procedure Call) that takes place between different hosts. LPC allocates memory from a pool specifically for message-storage into what is known as the LPC Zone. If the LPC Zone allocated memory cannot handle the volume of messages received, then memory is transferred from the kernel to the LPC Zone. Under normal circumstances, the memory should be diverted back to the kernel from the LPC Zone once it is no longer in use. However, creating a specially malformed request can cause the memory to be withheld by the LPC Zone which could eventually utilize all of the kernel's memory resources if this action was repeated.

Reboot of the system is required in order to regain normal functionality.

This vulnerability can only be launched against a machine a user can interactively log onto, therefore remote exploitation is not possible.

start porttool -s6 BaseNamedObjectsFoo
porttool -c6 BaseNamedObjectFoo 

https://github.com/offensive-security/exploit-database-bin-sploits/raw/master/bin-sploits/20255.zip

相关推荐: wu-ftp命令重写漏洞

wu-ftp命令重写漏洞 漏洞ID 1207570 漏洞类型 未知 发布时间 1997-01-11 更新时间 1997-01-11 CVE编号 CVE-1999-0081 CNNVD-ID CNNVD-199701-049 漏洞平台 N/A CVSS评分 5.…

© 版权声明
THE END
喜欢就支持一下吧
点赞0
分享