• On MovieTome: See the villain of IRON MAN 2!
advertisement
Click Here

Windows Me Malformed IPX NMPI Packet Vulnerability Patch

Download Now (216.65K)
Tested spyware free

Features

  • License:

    Free

  • Editor's Rating:

    Not rated

  • Average User Rating:

    3.0 stars (out of 10 votes) Rate it!

  • Downloads:

    17,401

  • Operating Systems:

    Windows Me

  • Additional Requirements:

    No additional requirements

  • Limitations:

    No limitations

  • Date Added:

    October 12, 2000

Publisher's description of Windows Me Malformed IPX NMPI Packet Vulnerability Patch

From Microsoft:

This patch eliminates a security vulnerability that could cause an affected system to fail, and depending on the number of affected machines on a network, potentially could be used to flood the network with superfluous data. The affected system component is normally present only if it has been deliberately installed.

The Microsoft IPX/SPX protocol implementation (NWLink) includes an NMPI (Name Management Protocol on IPX) listener that will reply to any requesting network address. The NMPI listener software does not filter the requesting computer's network address correctly, and will therefore reply to a network broadcast address. Such a reply would in turn cause other IPX NMPI listener programs to also reply. This sequence of broadcast replies could generate a large amount of unnecessary network traffic. A machine that crashed due to this vulnerability could be put back into service by rebooting.

IPX is not installed by default in Windows 98, 98 Second Edition, or Windows Me, and is only installed by default in Windows 95 if there is a network card present in the machine at installation time. Even when IPX is installed, a malicious user's ability to exploit this vulnerability would depend on whether they could deliver a malformed NMPI packet to an affected machine. Routers frequently are configured to drop IPX packets, and if such a router lay between the malicious user and an affected machine, they could not attack it. Routers on the Internet, as a rule, do not forward IPX packets, and this would tend to protect intranets from outside attack, as well as protecting machines connected to the Internet via dial-up connections. As discussed in the FAQ, the most likely scenario in which this vulnerability could be exploited would be one in which a malicious user on an intranet would attack affected machines on the same intranet, or one in which a malicious user on the Internet attacked affected machines on their cable modem or DSL subnet. Read the ""Malformed IPX NMPI Packet"" Vulnerability FAQ.

See more CNET content tagged:
IPX,
Intranet,
malicious user,
packet,
subnet
F-Secure Internet Security
Complete and easy-to-use internet security software for your PC.
Download Now

More popular Corporate Security Software downloads

  1. 532 downloads 1. McAfee Total Protection for Small Business
  2. 368 downloads 2. Activity Monitor
  3. 314 downloads 3. Wireshark
  4. 299 downloads 4. Trend Micro OfficeScan Managed Antivirus
  5. 292 downloads 5. Ping Tester Pro
  6. See all Corporate Security Software downloads
Recover My Files
Recover deleted files, perform unformat recovery and corrupt drive recovery.
Download Now

User reviews

Submit your review

Log in or create an account to submit your review for:

Windows Me Malformed IPX NMPI Packet Vulnerability Patch

ORLog in with your Facebook account
1. Rate this product:
(Mouse over the stars to rate this product and click to set your rating.)
2. One-line summary:(Summarize your review in one line. 10 characters minimum; required.)
0 of 55 characters
3. Pros:(Tell us what you like about this product. 10 characters minimum; required.)
0 of 250 characters
4. Cons:(Tell us what you don't like about this product. 10 characters minimum; required.)
0 of 250 characters
Bottom-line summary:(Explain to us in detail why you like or dislike the product, focusing your comments on the product's features and functionality, and your experience using the product. This field is optional.)
0 of 5000 characters

The posting of advertisements, profanity, or personal attacks are prohibited.
Click here to review our site terms of use.

Submit

You must be 13 years of age or older to submit personal information to CNET Networks. In compliance with the Children's Online Privacy Protection Act of 1998, CNET Networks does not accept name and e-mail address information from users who are under 13 years of age.

All submitted ratings and written comments become the sole property of CNET Networks, Inc. (CNET) and may be used at CNET Networks' sole discretion. Ratings and written comments are generally posted within two to four business days in batch groups, not in real time. However, CNET Networks reserves the right to remove or refuse to post any submission for any reason. You acknowledge that you, not CNET Networks, are responsible for the contents of your submission.

CNET Networks is not responsible for the content of the publisher's descriptions or user reviews on this site. We encourage you to determine whether this product or your intended use is legal. We do not encourage or condone the use of any software in violation of applicable laws. CNET Download.com does not sell, resell, or license any of the products listed on the site. We cannot be held liable for issues that arise from the download or use of these products.

advertisement
download
Site map
Help center
Our software policies
Newsletters
Submit software
Popular topics
Apple iPhone
Apple iPod
Cell phones
Dell
GPS
LCD TV
CNET sites
CNET Site map
CNET TV
Downloads
News
Reviews
Shopper.com
More information
Newsletters
CNET Mobile
Customer Help Center
RSS
CNET Widgets
About CNET