Icon of program: Windows 2000 NetBIOS Name…

Windows 2000 NetBIOS Name Server Protocol Spoofing Vulnerability Patch

Download now

Used Windows 2000 NetBIOS Name Server Protocol Spoofing Vulnerability Patch for Windows?

Editors’ Review

Download.com staff
This patch from Microsoft enhances security for Windows systems by mitigating a vulnerability in the NetBIOS Name Server protocol, reducing the threat of network name spoofing.

Top Recommended Alternative

  • Pros

    • Addresses security vulnerability in NBNS protocol
    • Reduces threat of network name spoofing
    • Provides flexibility for administrators
    • Allows configuration of name conflict response
    • Enables rejection of name release datagrams

  • Cons

    • Does not completely eliminate spoofing threat
    • Requires firewall configuration for full protection
    • Additional measures like IPSec may be needed
    • Relies on administrators implementing configurations
Icon of program: Windows 2000 NetBIOS Name…

Windows 2000 NetBIOS Name Server Protocol Spoofing Vulnerability Patch

Download now

Used Windows 2000 NetBIOS Name Server Protocol Spoofing Vulnerability Patch for Windows?

Explore More

Full Specifications

GENERAL
Release
Latest update
Version
0
OPERATING SYSTEMS
Platform
Windows
Operating System
  • Windows 2000
  • Windows 10
Additional Requirements
None
POPULARITY
Total Downloads
25,991
Downloads Last Week
0
Report Software

Program available in other languages

Last Updated

User Reviews

1/5

3 User Votes

Developer’s Description

By Microsoft
Eliminate a security vulnerability in a protocol implemented in Microsoft Windows systems.
The NetBIOS Name Server (NBNS) protocol, part of the NetBIOS over TCP/IP (NBT) family of protocols, is implemented in Windows systems as the Windows Internet Name Service (WINS). By design, NBNS allows network peers to assist in managing name conflicts. Also by design, it is an unauthenticated protocol and therefore subject to spoofing. A malicious user could misuse the Name Conflict and Name Release mechanisms to cause another machine to conclude that its name was in conflict. Depending on the scenario, the machine would as a result either be unable to register a name on the network, or would relinquish a name it already had registered. The result in either case would be the same the machine would not respond requests sent to the conflicted name anymore.

If normal security practices have been followed, and port 137 UDP has been blocked at the firewall, external attacks would not be possible. A patch is available that changes the behavior of Windows systems in order to give administrators additional flexibility in managing their networks. The patch allows administrators to configure a machine to only accept a name conflict datagram in direct response to a name registration attempt, and to configure machines to reject all name release datagrams. This will reduce but not eliminate the threat of spoofing. Customers needing additional protection may wish to consider using IPSec in Windows 2000 to authenticate all sessions on ports 137-139.

Microsoft created this patch to eliminate this security vulnerability.

Download.com
Your review for Windows 2000 NetBIOS Name Server Protocol Spoofing Vulnerability Patch