Jump to content

Unpatched netbios vulnerability

ale5000

By ale5000
in Windows 9x Member Projects

 Share

Recommended Posts


LLXX

LLXX

Posted
Posted
IMPORTANT: Microsoft recommends that this hotfix only be applied to computers that specifically require it, that is, computers that play a central role in the network and that the administrator judges could be a target for such an attack. Microsoft does not recommend that you apply this hotfix globally without testing it in a specific environment.

You shouldn't have port 137 open to the whole Internet anyway.

Link to comment
Share on other sites
LLXX

LLXX

Posted
Posted
Here's a couple of patches taken from www.grc.com years ago, that are said to close and/or open port 139. Works on Windows 98/Me. Any one want to test them and confirm that they work on their system?
I'd rather just rename the file as MDGx suggests there.
Link to comment
Share on other sites
MDGx

MDGx

Posted
Posted
This: http://www.mdgx.com/newtip19.htm#INS kills "file and printer sharing".

If I un-bind tcp/ip from "file and printer sharing", then "file and printer sharing" stop working.

Can some experts here simply path "Vnbt.386" (maybe understanding how the win98 fix works and copy it on win me)?

To my knowledge file + printer sharing is tied into NetBios.

More info:

http://www.pc-help.org/www.nwinternet.com/...ues/sharing.htm

Therefore you cannot use shares [$file +/- $printer] if you disable NetBios.

Also, vnbt.386 is specific to the 9x OS edition.

The 1 from 98/98 SE doesn't work with ME nor the other way around.

So you can disable NetBios 3 ways [but this will also disable file + printer sharing]:

1. Follow this guide:

http://www.mdgx.com/newtip19.htm#INS

2. Follow this guide:

http://www.grc.com/su-rebinding9x.htm

3. Use the Noshare.exe "patching" tool posted above by sam13484.

Please keep in mind that file + printer sharing is a serious security vulnerability if you don't know what you're doing or if you are careless:

http://cable-dsl.home.att.net/netbios.htm

Your choice.

HTH

Link to comment
Share on other sites
oscardog

oscardog

Posted
Posted
This: http://www.mdgx.com/newtip19.htm#INS kills "file and printer sharing".

If I un-bind tcp/ip from "file and printer sharing", then "file and printer sharing" stop working.

Can some experts here simply path "Vnbt.386" (maybe understanding how the win98 fix works and copy it on win me)?

If tcp/ip is unbound from netbios your home network file sharing will work fine between win9x computers, I transfer over mapped drives most days with it unbound. Your problem lies at your winxp end, which does not support netbeui as standard it needs copying from your xp disc or downloading.

Once you have sorted your xp end out, file sharing will work, it is not a win9x problem.

I would seriously consider ditching ics and getting a router, they offer far greater security.

Link to comment
Share on other sites
Max_04

Max_04

Posted
Posted

This: http://www.mdgx.com/newtip19.htm#INS kills "file and printer sharing".

If I un-bind tcp/ip from "file and printer sharing", then "file and printer sharing" stop working.

Can some experts here simply path "Vnbt.386" (maybe understanding how the win98 fix works and copy it on win me)?

If tcp/ip is unbound from netbios your home network file sharing will work fine between win9x computers, I transfer over mapped drives most days with it unbound. Your problem lies at your winxp end, which does not support netbeui as standard it needs copying from your xp disc or downloading.

Once you have sorted your xp end out, file sharing will work, it is not a win9x problem.

I would seriously consider ditching ics and getting a router, they offer far greater security.

Talking about ICS, a question...

Windows 98 FE is more secure in terms of sharing and network security than Windows 98 SE/ME?

I know that Windows 98 FE hasn't ICS.

Link to comment
Share on other sites
erpdude8

erpdude8

Posted
Posted (edited)
Talking about ICS, a question...

Windows 98 FE is more secure in terms of sharing and network security than Windows 98 SE/ME?

I know that Windows 98 FE hasn't ICS.

not really true, Max_04. even though Win98fe doesnt have ICS, Win98FE users can install the XP-based ICS client on a Win98fe machine. Copy the NETSETUP.EXE file from an WinXP machine and onto a floppy disk. Then run NETSETUP.EXE on a Win98fe machine and that'll install ICS and some UPNP (universal plug & play) components onto Win98fe. the XP SP1/SP2 editions of NETSETUP.EXE include the Q314941 UPNP security fixes.

also, a normal or typical Win98SE installation does not automatically install ICS. so ICS is not installed under Win98se by default.

eh, I dont have to worry about the unpatched Netbios problem in WinME. I NEVER use Netbios on my ME computer.

I'd rather use WINIPCFG and click on RELEASE ALL, then click on RENEW ALL to reset my network connections on the WinME computer. that's one of the Workarounds mentioned in MS article 269239.

Edited by erpdude8
Link to comment
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
 Share
Go to topic listing

  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...