Reported January 23, 2001, by Microsoft.

VERSIONS AFFECTED

  • Windows NT 4.0, all editions 

DESCRIPTION

An issue with loose permissions on the mutex that governs access to network resources has been discovered. A malicious attacker who can log on to the NT machine interactively can launch code that monopolizes the mutex, causing the machine to be unavailable on the network.

VENDOR RESPONSE

Microsoft has released a security bulletin, MS01-003.

CREDIT
Discovered by Arne Vidstrom.