For those on the ntbugtraq mailing list, you should have gotten this earlier. If you are not on that list, here is a copy of the message. I am not taking credit for this, just posting it here.

Make sure you install the appropriate hotfix if you have not already done so. I broke the link to the script so that the totally clueless cannot download it. If you are intelligent, you can easily notice how it was broken.



Kevin Gennuso <[email protected]>
Sent by: Windows NTBugtraq Mailing List <[email protected]>

08/27/2002 10:01 AM
Please respond to Windows NTBugtraq Mailing List

To: [email protected]
cc:
Subject: MS02-045 exploit is out




Hi all,

I haven't seen much noise on this list about MS02-045 (Unchecked Buffer in
Network Share Provider Can Lead to Denial of Service (Q326830)), but the
implications are very nasty. Any unpatched WinNT/2K/XP or .NET machine on
your network that's listening on port 139 and/or 445 can be crashed in
about two seconds with a malformed SMB packet. I highly disagreed with
Microsoft's assessment that this was only a "moderate" threat level to
intranet and desktop systems because the exploit is so easy to perform.

It was bad enough in theory, but now a script-tot friendly GUI version of
the exploit has been posted on PacketStorm, and it works against all of
the above. You can try for yourself at
http://packetstorm.decepticons/0208-exploits/SMBdie.zip

We worked through the weekend to get a large percentage of our boxen
patched - you may have to do the same.

The old "WinNuke" from the evil days of Win95 is back.

Thanks for listening,

Kevin