CVE-2000-0347
published 2000-05-02CVE-2000-0347: Windows 95 and Windows 98 allow a remote attacker to cause a denial of service via a NetBIOS session request packet with a NULL source name.
PriorityP417medium5CVSS 2.0
AVNACLAuNCNINAP
EXPLOIT
EPSS
17.60%
96.8th percentile
Windows 95 and Windows 98 allow a remote attacker to cause a denial of service via a NetBIOS session request packet with a NULL source name.
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Suricata
GPL NETBIOS RFParalyze Attempt
suricata·2010-09-23
CVE-2000-0347 GPL NETBIOS RFParalyze Attempt
GPL NETBIOS RFParalyze Attempt
Rule: alert tcp $EXTERNAL_NET any -> $HOME_NET 139 (msg:"GPL NETBIOS RFParalyze Attempt"; flow:established,to_server; content:"BEAVIS"; content:"yep yep"; reference:bugtraq,1163; reference:cve,2000-0347; reference:nessus,10392; classtype:attempted-recon; sid:2101239; rev:11; metadata:created_at 2010_09_23, cve CVE_2000_0347, signature_severity Informational, tag Description_Generated_By_Proofpoint_Nexus, updated_at 2024_03_08;)
Suricata
GPL NETBIOS NT NULL session
suricata·2010-09-23
CVE-2000-0347 GPL NETBIOS NT NULL session
GPL NETBIOS NT NULL session
Rule: alert tcp $EXTERNAL_NET any -> $HOME_NET 139 (msg:"GPL NETBIOS NT NULL session"; flow:established,to_server; content:"|00 00 00 00|W|00|i|00|n|00|d|00|o|00|w|00|s|00| |00|N|00|T|00| |00|1|00|3|00|8|00|1"; reference:arachnids,204; reference:bugtraq,1163; reference:cve,2000-0347; classtype:attempted-recon; sid:2100530; rev:12; metadata:created_at 2010_09_23, cve CVE_2000_0347, signature_severity Informational, tag Description_Generated_By_Proofpoint_Nexus, updated_at 2024_03_08;)
Exploit-DB
Microsoft Windows 95/98 - NetBIOS NULL Name
exploitdb·2000-05-02
CVE-2000-0347 Microsoft Windows 95/98 - NetBIOS NULL Name
Microsoft Windows 95/98 - NetBIOS NULL Name
---
// source: https://www.securityfocus.com/bid/1163/info
Unpredictable results, including system crashes, lock-ups, reboots, and loss of network connectivity, can occur in Windows 95/98 if a NetBIOS session packet is received with the source host name set to NULL.
/*********************************** www.el8.org **** www.wiretrip.net **/
/* - el8.org advisory: RFParalyze.c
code by rain forest puppy -
coolness exhibited by Evan Brewer -
- Usage: RFParalyze
where is the IP address (duh) of the target (note:
not DNS name). is the NetBIOS name (again, duh) of
the server at the IP address given. A kiddie worth his scripts
should be able to figure out how to lookup the NetBIOS name.
Note: NetBIOS name must be in upper case.
This code was mad
Exploit-DB
Microsoft Internet Explorer 5.0.1 - Invalid Byte Cross-Frame Access
exploitdb·1999-01-28
CVE-1999-0347 Microsoft Internet Explorer 5.0.1 - Invalid Byte Cross-Frame Access
Microsoft Internet Explorer 5.0.1 - Invalid Byte Cross-Frame Access
---
source: https://www.securityfocus.com/bid/197/info
On January 28, 1999, Georgi Guninski originally reported a vulnerability in Internet Explorer 4.x. Internet Explorer 4.x's implentation of Cross-frame security could be bypassed if "%01" is appended to an arbitrary URL. If the specially malformed URL is inserted in a javascript after an 'about:' statement, arbitrary code can be executed on the target host. Successful exploitation could lead to access to local files, window spoofing, and arbitrary code execution.
On October 6, 2000, Alp Sinan discovered that a variation of this vulnerability exists in Microsoft Internet Explorer 5.5. Instead of using "%01", the ASCII equivalents of "^A" or "" can be used instead.
G
2000-05-02
Published