COMMAND

	XP denial of service (100% CPU)

SYSTEMS AFFECTED

	Windows XP default installation

PROBLEM

	NtWaK0 [http://www.SafeHack.com] found following :
	

	TCP/UDP port 445 is open by default on a Fresh  installed  XP  box.  The
	attack is serious since it work remotly and can make the CPU  100  %  in
	less then 20 Second.
	

	If an attacker target your Windows XP port 445  TCP  with  some  special
	crafted packed [SYN Flag Set] they can cause 100 CPU  %  utilisation  in
	less then 20 Second. The speed while sending the packet was 20 K  upload
	sometime less then 18 K [Based on DU-Meter].
	

	

SOLUTION

	Nothing yet. Filter port 445.