Windows 98 FTP MS/DOS Device Name Request DoS

High Nessus Plugin ID 10929


The remote Windows host is affected by a denial of service vulnerability.


It was possible to freeze or reboot Windows by reading a MS/DOS device through FTP, using a file name like CON\CON, AUX.htm, or AUX.

An attacker may use this flaw to continuously crash the affected host, preventing users from working properly.


Apply the patch from the above reference.

See Also

Plugin Details

Severity: High

ID: 10929

File Name: ftp_w98_devname_dos.nasl

Version: $Revision: 1.30 $

Type: remote

Family: FTP

Published: 2002/03/29

Modified: 2013/05/31

Dependencies: 21626, 10092, 10079

Risk Information

Risk Factor: High


Base Score: 7.8

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C

Vulnerability Information

Required KB Items: Host/Win9x, ftp/login