Microsoft Windows XP Service Pack 1 Local Denial of Service Vulnerability

vendor:

Windows XP

by:

SecurityFocus

7.2

CVSS

HIGH

Denial of Service

400

CWE

Product Name: Windows XP

Affected Version From: Microsoft Windows XP Service Pack 1

Affected Version To: Microsoft Windows XP Service Pack 1

Patch Exists: NO

Related CWE: N/A

CPE: o:microsoft:windows_xp::sp1

Metasploit: N/A

Other Scripts: N/A

Tags: N/A

CVSS Metrics: N/A

Nuclei References: N/A

Nuclei Metadata: N/A

Platforms Tested: Windows

2002

Microsoft Windows XP Service Pack 1 Local Denial of Service Vulnerability

It is reported that Microsoft Windows XP Service Pack 1 is prone to a local denial of service vulnerability. The issue is reported to manifest when a raw IP over IP socket is created and data is transferred over the newly created socket. It is reported that this operation causes the kernel of the Windows computer to crash, resulting in the computer rebooting. If this issue can be triggered reliably, a local attacker may exploit the issue to deny service for legitimate users.

Mitigation:

No known mitigation or remediation is available for this vulnerability.

Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/12870/info

It is reported that Microsoft Windows XP Service Pack 1 is prone to a local denial of service vulnerability.

The issue is reported to manifest when a raw IP over IP socket is created and data is transferred over the newly created socket.

It is reported that this operation causes the kernel of the Windows computer to crash, resulting in the computer rebooting. If this issue can be triggered reliably, a local attacker may exploit the issue to deny service for legitimate users.

Further investigation into this issue is ongoing; this BID will be updated as soon as more details are available. 

import socket
s=socket.socket(socket.AF_INET,socket.SOCK_RAW,4)
s.sendto("",("x.x.x.x",0))

Press ENTER and your win box should crash immediately.