VULHUB ™

Due to a flaw in the privilege level of a particular underlying system call, it is possible for a user to disrupt the telnet service of arbitrary users connected to a Windows 2000 host. Typically, in order to make some System calls one requires a certain level of privilege (admin), but a flaw exists which enables a normal user to make a specific system call. If this system call is properly made it is possible to terminate telnet sessions. This is achieved if a program that has been loaded on the server initiates the system call to terminate a telnet session.

Due to a flaw in the privilege level of a particular underlying system call, it is possible for a user to disrupt the telnet service of arbitrary users connected to a Windows 2000 host. Typically, in order to make some System calls one requires a certain level of privilege (admin), but a flaw exists which enables a normal user to make a specific system call. If this system call is properly made it is possible to terminate telnet sessions. This is achieved if a program that has been loaded on the server initiates the system call to terminate a telnet session.