Philipp 6 Posted July 26, 2001 The Windows 2000 Terminal Service and Windows NT 4.0 Terminal Server Edition contains a memory leak in one of the functions that processes incoming Remote Data Protocol data via port 3389. Each time an RDP packet containing a specific type of malformation is processed, the memory leak depletes overall server memory by a small amount. If an attacker sent a sufficiently large quantity of such data to an affected machine, he could deplete the machine´s memory to the point where response time would be slowed or the machine´s ability to respond would be stopped altogether. All system services would be affected, including but not limited to terminal services. Normal operation could be restored by rebooting the machine. A patch is available to fix this vulnerability. Please read the Security Bulletin for information on obtaining this patch. Read more Share this post Link to post
