VULHUB ™

The Network Monitor tool that ships with Windows NT/2000 allows and administrator to capture and analyze all network traffic on the local network as well as traffic destined for the host. Netmon is designed to capture this traffic before being viewed in the graphical interface by parsing information received from the network and then translated into a readable format in the user interface. Seperate DLL libraries within Netmon parse the individual application protocols. One of these libraries, "browser.dll" is vulnerable. By exploiting multiple stack overflows in various function calls within the vulnerable dll's, a remote attacker could gain control of Network Monitor and execute arbitraty code and gaining control of the victim host.

The Network Monitor tool that ships with Windows NT/2000 allows and administrator to capture and analyze all network traffic on the local network as well as traffic destined for the host. Netmon is designed to capture this traffic before being viewed in the graphical interface by parsing information received from the network and then translated into a readable format in the user interface. Seperate DLL libraries within Netmon parse the individual application protocols. One of these libraries, "browser.dll" is vulnerable. By exploiting multiple stack overflows in various function calls within the vulnerable dll's, a remote attacker could gain control of Network Monitor and execute arbitraty code and gaining control of the victim host.