Microsoft Windows LAND Attack Denial of Service

Found on Secunia on Monday, 07 March 2005

The vulnerability is caused due to improper handling of IP packets with the same destination and source IP and the SYN flag set. This causes a system to consume all available CPU resources for a certain period of time.

This kind of attack was first reported in 1997 and became known as LAND attacks.

Microsoft Windows XP with SP2 and Microsoft Windows 2003 have been reported vulnerable.

Looks like MS is recycling old bugs. I remember some MS exec talking about how SP2 would be secure and end all security problems once and for all. And now they have bugs from 1997. So much for that.

Browse all articles« Previous « » Next »