¤å¥ó: Q169461 [winnt] ¼ÐÃD: Access Violation in DNS.EXE Caused by Malicious Telnet Attack ²£«~: Microsoft Windows NT ª©¥»: 4.00 §@·~¨t²Î: WINDOWS ÃöÁä¦r: kbbug4.00 kbnetwork NTSrv nttcp -------------------------------------------------------------------------- ¦¹¤å¥ó¤¤ªº¸ê°T¾A¥Î©ó: - Microsoft Windows NT Server version 4.0 -------------------------------------------------------------------------- ¼xª¬ ==== ±z¥i¯à©ó Dns.exe ¦¬¨ì¦s¨ú¹H³W°T®§¡A³o¸g±`µo¥Í©ó³s½u¨ì¦p Internet ¤½¥Î ºô¸ô¤Wªº¹q¸£¡A¦b¨ºùØ»W·Nªº«Iŧ¬O«D±`±`¨£ªº¡C »F¦] ==== ¦¹ºØ¯S©wªº«Iŧ¤@¯ë¬O´c·N¦a©ó«IŧªÌ¨t²Î¤¤Áä¤J¤U¦C«ü¥O¨Ó²£¥Í: telnet 19 | telnet 53 ¦¹«ü¥O¾É­P©ó³s±µ°ð 19 (·|²£¥Í¤@¦r¤¸¦r¦êªº chargen ªA°È) «Ø¥ß¤@ telnet ³s½u¡A¨Ã±N¨ä¿é¥X­«·s¾É¦V¨ì³s±µ°ð 53 (DNS ªA°È) ªº telnet ³s½u¡C³o¼Ëªº ¦r¤¸¶É­Ë©ó DNS ªA°È³y¦¨¦s¨ú¹H³W¡A¾É­PªA°È²×¤î¦Ó¤¤Â_¦WºÙ¸ÑŪªA°È¡C ¸Ñ¨M¤èªk ======== Microsoft DNS Server ¤w­×§ï¥H§ó¥¿¦¹°ÝÃD¡C¨ú±o¤U¦C­×­qª©¥»¡A©Îµ¥«Ý¤U ¤@ª© Windows NT service pack¡C ¦¹­×­qª©¥»¤w¤½§G©ó¤U¦C Internet ¦ì¸m: ftp://ftp.microsoft.com/bussys/winnt/winnt-public/fixes/cht/NT40/ hotfixes-postSP3/dns-fix ª¬ºA ==== Microsoft ¤w½T»{¦¹¬°¤@ Windows NT 4.0 ª©¤Wªº°ÝÃD¡C²{¤w¦³¤@¥i¥Îªº­×­q ¤ä´©¡A¦ý¦¹­×­q©|¥¼§¹¥þ¦a°jÂk¤ÀªR´ú¸Õ¡A¥BÀ³¥u¥Î©ó¥X²{«e­z©Ò«ü°ÝÃDªº¨t ²Î¡C°£«D±z¤w¬°¦¹°ÝÃDÄY­«¼vÅT¡AMicrosoft «Øij±zµ¥«Ý¤U¤@ª©§t¦³¦¹­×­qªº Service Pack¡C½Ð³sµ¸ Microsoft Technical Support ¥H¨ú±o¨ä¥L¬ÛÃö¸ê°T¡C ¨ä¥Lªº¬d¸ß¦r¤¸: 4.00 prodnt denial of service dns telnet port 53 ============================================================================ MICROSOFT KNOWLEDGE BASE ©Ò´£¨Ñªº¸ê°T¤£±a¥ô¦óºØÃþªº«~½è«OÃÒ¡CMICROSOFT ¤£¾á«O¥ô¦ó©ú½Tªº©ÎÁô§tªº«~½è«OÃÒ¡A¥]¬A°Ó«~¶R½æ¤Î¯S®í±¡ªp¾A¦X©Êªº«~½è«O ÃÒ¡C¤£½×¦b¥ô¦ó±¡ªp¤U¡A§Y¨Ï MICROSOFT ¤½¥q©Î¨ä¥N²z°Ó¤w³Q§iª¾¥i¯àªº·lÃa¡A MICROSOFT ©Î¨ä¥N²z°Ó¹ï¥ô¦óª½±µ¡B¶¡±µ¡B°¸µM©Ê©Î¾É­P©Êªº°Ó·~§Q¼í·l¥¢¡A©Î ¯S®íªº·lÃa³£¨S¦³¥ô¦ó¸q°È¡C¬Y¨Ç¦{¤£¤¹³\±Æ°£©Î­­¨î³oºØ¾É­P©Ê©Î°¸µM©Ê·lÃa ªº¸q°È¡A¦b³oºØ±¡ªp¤U«e­zªº­­¨î¥i¯à¤£¾A¥Î¡C