Free network vulnerability software for windows

Protector Plus - Windows Vulnerability Scanner checks your system for Windows Vulnerabilities. It guides you to update with the right patch to make your system more secure.
This software is compatible with Windows XP (Home & Professional), Windows 2000 Server & Professional and Windows 2003. Once the Scan is completed, Protector Plus - Windows Vulnerability Scanner lists the vulnerabilities detected, their risk level and the download location of the patch.
It also creates the log file named Protector_Plus_Windows_Vulnerability_Scan.htm in the folder from where Protector Plus - Windows Vulnerability Scanner was executed.
Version restrictions:
- 30 days trial

Windows 2000 Network DDE Vulnerability Patch MS01-007 (2/9/01) is developed to fix the vunerability for Network Dynamic Data Exchange, a technology that enables applications on different Windows computers to dynamically share data. It is affected via communications channels called trusted shares,which is managed by a service called the Network DDE Agent. In Windows 2000, the Network DDE Agent runs using the Local System security context and processes all requests using this context, rather than that of the user. This would give an attacker an opportunity to cause the Network DDE Agent to run code of her choice in Local System context, as a means of gaining complete control over the local machine.

By design, processes on the local machine can levy requests upon the Network DDE Agent, including ones that indicate what application should be run in conjunction with a particular trusted share. However, a vulnerability exists because,

Microsoft recommends that customers using Windows 2000 workstations or who allow unprivileged users to run code on Windows 2000 servers apply the patch immediately. In addition, customers operating Windows 2000 Web servers should consider applying the patch to those machines as well, as a precautionary measure.

Windows Me Malformed IPX NMPI Packet Vulnerability Patch has come as an effective tool to deal with a security vulnerability that could cause an affected system to fail, and depending on the number of affected machines on a network, potentially could be used to flood the network with superfluous data. The affected system component is normally present only if it has been deliberately installed.

The Microsoft IPX/SPX protocol implementation (NWLink) includes an NMPI (Name Management Protocol on IPX) listener that will reply to any requesting network address. The NMPI listener software does not filter the requesting computer's network address correctly, and will therefore reply to a network broadcast address. Such a reply would in turn cause other IPX NMPI listener programs to also reply. This sequence of broadcast replies could generate a large amount of unnecessary network traffic. A machine that crashed due to this vulnerability could be put back into service by rebooting.

IPX is not installed by default in Windows 98, 98 Second Edition, or Windows Me, and is only installed by default in Windows 95 if there is a network card present in the machine at installation time. Even when IPX is installed, a malicious user's ability to exploit this vulnerability would depend on whether they could deliver a malformed NMPI packet to an affected machine. Routers frequently are configured to drop IPX packets, and if such a router lay between the malicious user and an affected machine, they could not attack it.

Routers on the Internet, as a rule, do not forward IPX packets, and this would tend to protect intranets from outside attack, as well as protecting machines connected to the Internet via dial-up connections. As discussed in the FAQ, the most likely scenario in which this vulnerability could be exploited would be one in which a malicious user on an intranet would attack affected machines on the same intranet, or one in which a malicious user on the Internet attacked affected machines on their cable modem or DSL subnet. Read the ""Malformed IPX NMPI Packet"" Vulnerability FAQ.

Windows NT Registry Permissions Vulnerability Patch 1.0 has come as a helpful program to deal with a problem in Windows NT. Microsoft has released a tool that corrects the permissions on several registry values in Microsoft Windows NT 4.0. The default permissions could allow a malicious user to gain additional privileges on an affected machine.

Office 2000 HTML Object Tag Vulnerability Patch is launched as an important and helpful patch which can remove a security vulnerability in Word 2000, Excel 2000, and PowerPoint 2000. This vulnerability could allow a Hypertext Markup Language (HTML) file to shut down one of these programs and potentially run malicious code.

Windows NT 4.0 "Winsock Mutex" Vulnerability Patch MS01-003 is a highly-efficient, high-quality patch which eliminates a security vulnerability in Windows NT 4.0.

The vulnerability could allow a malicious user to run a special program to disable an affected computer's network functionality. Like all other objects under Windows NT 4.0, mutexes--synchronization objects that govern access to resources--have permissions associated with them that govern how they can be accessed. However, a particular mutex used to govern access to a networking resource has inappropriately loose permissions. This could enable an attacker who had the ability to run code on a local machine to monopolize the mutex, thereby preventing any other processes from using the resource that it controlled. This would have the effect of preventing the machine from participating in the network.

The attacker would require interactive logon access to the affected machine. This significantly limits the scope of the vulnerability because, if normal security recommendations have been followed, unprivileged users will not be granted interactive logon rights to critical machines such as servers. Unprivileged users typically are granted interactive logon rights to workstations and terminal servers. However, a workstation would not be a tempting target for an attacker, because he could only use this vulnerability to deny service to himself. The machines most likely to be affected would be terminal servers.

Windows 2000 Group Policy File Vulnerability Patch MS02-016 has come as a useful program designed to deal with the "Opening Group Policy Files for Exclusive Read Access Blocks Policy Application" issue affecting Windows 2000 domain controllers, discussed in Microsoft Security Bulletin MS02-016. Download it to prevent an attacker from blocking the application of Group Policy within a Windows 2000 domain.

Group Policy enables a domain administrator to specify settings for groups of computers and users on a network, such as security settings, desktop settings, and applications that can be installed. Blocking the policy allows an attacker to retain older policy settings rather than being subject to any new ones the administrator had instituted.