Oh, Ping of Death.. just saying it brings back old memories. This was one of the first exploits i had a lot of fun with in class. sending ping’s to other classmates and watching the Windows NT computer blue screen and reboot. good times…. good times….
for a more technical understanding of the history of POD (ping of death, read below)
http://insecure.org/sploits/ping-o-death.html
A new Vulnerability is slightly reminiscent of the old winNT issue, but this is a little different.
Microsoft Security Bulletin MS11-064 – Important
Vulnerabilities in TCP/IP Stack Could Allow Denial of Service (2563894)
The bug exists in Windows Vista, Server 2008, Windows 7 and Server 2008 R2, Microsoft said, but not in Windows XP or Server 2003
This may lead to new generations of pranksters bluescreen’ing computers in labs and coffee shops. =)
Another important patch that is just as important is:
Microsoft Security Bulletin MS11-058 – Critical
Vulnerabilities in DNS Server Could Allow Remote Code Execution (2562485)
This vulnerability affects Microsoft DNS servers with recursion enabled. If unpatched, very bad things could happen. Microsoft has released information about this patch on they’re security research and defense blog. The post titled “Vulnerabilities in DNS Server Could Allow Remote Code Execution” details why this patch is important as well as answer questions regarding its impact.
They have another writeup on technet, here: http://www.microsoft.com/technet/security/Bulletin/MS11-058.mspx
You can read more about this and other Internet Explorer patches microsoft recently release @ http://www.computerworld.com/s/article/9219022/Microsoft_patches_1990s_era_Ping_of_Death_