Describe the IP fragments reassembly vulnerability in Windows 2000.

What will be an ideal response?

A bug in the Windows 2000 code component that handles the reassembly of IP fragments causes the target system to spend all the CPU time to process IP packets that have been modified by hackers. The processing of such packets can deny the services of a system to the users for some time. In some critical stages, this vulnerability may even cause a system to crash. Hackers can use this vulnerability to perform denial-of-service attacks on a computer that is running Windows 2000. However, it is very difficult for a hacker to exploit this vulnerability on computers that are protected by firewalls and proxy servers. In most cases, they exploit this vulnerability on computers where Web servers are installed.Patches for this vulnerability are available in the latest service packs of Win2K.