hacking contest

hacking exploits security forum
hacking
compliance articles
upgrade backup exec
information security consultant
Help - Search - Member List - Calendar
GovernmentSecurity.org > System Security > Windows Systems
blahplok
Mar 3 2005, 01:12 PM
looking for ddos for win98 second edition and win ME, any1 know link or where I can get this?
note:
Win98 open port 139 and Win ME open port 135,139 and 5000
myth
Mar 3 2005, 06:25 PM
If your asking for a ddos tool that will send maliciously crafted packets in the ddos style attack, the on a windows 9x/ME/(NT?) system, microsoft didnt completely implement the TCP/IP Stack, which works to their advantage meaning less likely a 9x machine will become a (half-decent) zombie machine....

<The_Other_Side_Of_The_Coin>

If your looking at attack a 9x/ME machine using a ddos technique, then it wouldnt be any different from other ddos attacks, unless your looking for a specific DoS vulnerability in Windows 9x/ME...

Ports 135 / 139 == NetBIOS operation ports, (Windows Sharing), vulnerable via weak pwd's and also if the 9x machine isnt updated, a major SMB flaw exists in a default install (pretty sure atleast)

Ports 5000 == UPNP Service, windows Me would have it, dont recon 9x machines have it, atleast not by default, revenues of attack are mainly by unpatched systems, automatic updates not highly used....

So yeah, thats the flipside of the coin, tell us what you actually wanna do, or whatnot
toe
Mar 4 2005, 09:30 AM
PM me i know a site that should have it.
andydis
Mar 4 2005, 12:39 PM
google for:


Smurf , nuker, nuker, ping of death, Dosser, syn flood.


and say hello to the dark side of the web (or is that irc?) :-)

if give up on port 5000, in my experience thats a no go, however most win9x best way to nuke is via 139, if they are firewalled though you have no chance.


Some programs we used to used late 90's=

WINNUKE.exe
divine reptribution
snuffit

Pro21
Mar 4 2005, 12:47 PM
lol
specific crash of win9x system : \\toto\share\con\con Blue screen
Terminal
Mar 5 2005, 08:35 AM
QUOTE(Pro21 @ Mar 4 2005, 06:17 PM)
lol
specific crash of win9x system : \\toto\share\con\con Blue screen
*




QUOTE
All versions of Win 95 & 98 in a LAN can be crashed using a modified version of the 'win98-con'-Bug. The target must have at lea
st one shared directory (read-only access is enough).

You just have to execute a 'special' link in a HTML-File on your own machine. This will crash down the victim's machine in the L
AN and maybe even in the Internet (I've not yet tested this possibility).


<html>
<head><title>Crash!</title>
<a href="file://victim/directory/con/con">click me!</a>
</body>
</html>

In this code fragment 'victim' is the name of victim's machine and 'directory' is any shared directory on this machine. Clicking
on this link will crash the machine as described in the 'win98-con.txt' by Zoa Chien in March, 3rd.


^^ Works very easily if system has a folder shared even with read-only access ..
or start-->run-->c:/con /con tongue.gif
binary_hashes
Mar 5 2005, 03:48 PM
QUOTE
Issue

By sending fragmented IGMP packets to a Windows 95, 98 or Windows NT 4.0 machine, it is possible to disrupt the normal operation of the machine. This vulnerability primarily affects Windows 95 and 98 machines. Depending on a variety of factors, sending such packets to a Windows 95 or 98 machine may elicit behavior ranging from slow performance to crashing.

Windows NT contains the same vulnerability, but other system mechanisms compensate and make it much more difficult to mount a successful attack.

Affected Software Versions

. Microsoft Windows 95

. Microsoft Windows 98

. Microsoft Windows 98 Second Edition

. Microsoft Windows NT Workstation 4.0

. Microsoft Windows NT Server 4.0

. Microsoft Windows NT Server 4.0, Enterprise Edition

. Microsoft Windows NT Server 4.0, Terminal Server Edition


Vulnerability Identifier: CVE-1999-0918

Patch Availability

. Windows 95:

http://www.microsoft.com/windows95/downloa...int/default.asp

. Windows 98:

http://www.microsoft.com/windows98/downloa...int/default.asp

. Windows NT Workstation 4.0; Windows NT Server 4.0; Windows NT Server, Enterprise Edition:

http://www.microsoft.com/technet/security/...ailability.mspx

. Windows NT Server 4.0, Terminal Server Edition:

http://www.microsoft.com/technet/security/...ailability.mspx

Note    The Windows 95 and 98 versions of this patch also are available via WindowsUpdate.



Exploits And Tools
1.Blitz IGMP nuker
2.IGMP attack (binary)
3.IGMP attack (binary) Lccwin32
4.IGMP attack (Windows Source)
5.IGMP Nuke
6.Mass Class C IGMP nukeing
7.Striker v1.5b
8. Windows 9x IGMP DoS

I hope this would help you wink.gif








This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please click here.
 
Invision Power Board © 2001-2005 Invision Power Services, Inc.