The CON/CON didn't affect NT (not natively anyway). Windows NT and 2000 run
on different kernels than Win9x (if you can call those kernels?), and
dos-devices (AFAIK) are implemented virtually on NT/2000. A fully patched
Windows NT/2000 is still vulnerable to this attack if the host runs Mdaemon
< 3.5.6. Besides it's not a request for a dos-device inside a dos-device
(which is what triggered the old Win9x DoS.
Peter Gründl
Defcom Security
----- Original Message -----
From: "Nelson Brito" <[EMAIL PROTECTED]>
To: "Peter Gründl" <[EMAIL PROTECTED]>
Cc: <[EMAIL PROTECTED]>
Sent: Thursday, March 15, 2001 6:39 PM
Subject: Re: def-2001-11: MDaemon 3.5.4 Dos-Device DoS
[snip]
>
> I don't know, but it's a CON/CON old bug, isn't it?
>
> If you pacthed your NT Box, the app is not vulnerable to this BUG, isn't
it?
>
[snip]
