Short Name |
DNS:EXPLOIT:MS-WIN-NAT-HLPR-DOS |
---|---|
Severity |
Major |
Recommended |
No |
Recommended Action |
Drop |
Category |
DNS |
Keywords |
Microsoft Windows NAT Helper Remote Denial of Service |
Release Date |
2012/11/06 |
Update Number |
2201 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+ |
This signature detects attempts to exploit a known vulnerability against Microsoft Windows NAT Helper. A successful attack can result in a denial-of-service condition.
Microsoft Windows is prone to a remote denial-of-service vulnerability because the Server service fails to properly handle unexpected network traffic. Exploiting this issue may cause affected computers to crash, denying service to legitimate users. Reports indicate that this vulnerability can be used to disable the Windows firewall. To exploit this issue, an attacker must be able to send malformed network traffic from a network interface located in the LAN side of an affected computer.