Home » Hacking News » Microsoft Windows EngTextOut denial of service
Microsoft Windows EngTextOut denial of service
by Mario Miri on April 25th, 2003 EngTextOut function in some versions of Microsoft Windows suffers from denial of service vulnerability. If the function receives non-ASCII input, the operating system crash follows.
Vulnerable:
Microsoft Windows .NET Datacenter Server Beta 3
Microsoft Windows .NET Enterprise Server RC2
Microsoft Windows .NET Enterprise Server Beta 3
Microsoft Windows .NET Standard Server Beta 3
Microsoft Windows .NET Web Server Beta 3
Microsoft Windows Server 2003
Microsoft Windows XP Home
Microsoft Windows XP Professional
Solution:
Currently there are no vendor supplied patches.
Discovered by:
[email protected]