Bugtraq mailing list archives
Annex DoS
From: formatez () EDUREDES EDU DO (Albert Nubdy)
Date: Sat, 25 Jul 1998 20:10:21 -0400
-----BEGIN PGP SIGNED MESSAGE----- Redes2 Security Team -------------------- .DO Underground PROBLEM ======= We have found serveral DoS attacks agaisnt Annex terminal servers from xylogics(bay). DETAILS ======= The first attack is about the ping program on the webserver. They designed the /ping program to take only 64 chars in the hostname part. They avoided from ppl to insert more than 64 by limiting it in the page on the webserver (/ping.html). But if you do a : http://annex.server.here/ping?query=a lot of aaaaaa's here(more than 64) then annex server goes BOOM!. The second attack is with the land attack. Maybe when they tried the land attack on the annex servers they thought it didn't work. But it does... The problem is that when you do 1 land attack the CPU only rises a 50 percent. Now if you do 2 land attacks consecutively then the annex server freezes because the CPU rises to 100%. I didn't make any programs for this because you only have to do a shell script that executes your land program at least two or three times. FIX === We notified Bay a month ago. They have not responded yet. Credits: wh0is, speed1, lizard. ========================================| Albert Nubdy | formatez () eduredes edu do | FormateZ@undernet | - ----------------------------------------| -----BEGIN PGP SIGNATURE----- Version: PGPfreeware 5.5.3i for non-commercial use <http://www.pgpi.com> iQA/AwUBNbqefVRmALifgPyqEQIvLACeOPojXC2FqVgsO688XIBGINVNEDMAnR5r WpUM+RDMkvaCMEmMkzqVNt5h =HPOk -----END PGP SIGNATURE-----
Current thread:
- espernet irc services, (continued)
- espernet irc services McClain Looney (Jul 24)
- smal bug in icmpinfo Adrian Dabrowski (Jul 26)
- Re: smal bug in icmpinfo Rich Lafferty (Jul 26)
- CFINGERD root security hole John Goerzen (Jul 23)
- Re: CFINGERD root security hole Roscinante (Jul 24)
- Microsoft Security Bulletin (MS98-006) Aleph One (Jul 24)
- SECURITY: new ncurses packages twiztah (Jul 24)
- FW: Microsoft Security Bulletin (MS98-007) MacGyver (Jul 24)
- Microsoft Security Bulletin (MS98-007) Aleph One (Jul 25)
- Alert: New Source Bug Affect Sun JWS Aleph One (Jul 25)
- Annex DoS Albert Nubdy (Jul 25)
- Re: Annex DoS Matt Carter (Jul 26)
- Security warning: Netscape https & proxies Henrik Nordstrom (Jul 26)
- Another NEW mIRC bug and ALL mIRC Exploit patches Derek Reynolds (Jul 24)
- Re: Another NEW mIRC bug and ALL mIRC Exploit patches Mike Zimmerman (Jul 25)
- small bug in 5/98 distribution Sun 4070627 Lloyd Vancil (Jul 24)
- Re: small bug in 5/98 distribution Sun 4070627 Eugene Bradley (Jul 24)
- Re: small bug in 5/98 distribution Sun 4070627 Brandon Hume (Jul 26)
- Re: small bug in 5/98 distribution Sun 4070627 Casper Dik (Jul 27)
- FW: Alert: Arbitrary code execution via email or news Patrick Oonk (Jul 27)
- ISS Security Advisory -- MS Exchange 5.x Jon Larimer (Jul 27)
- Re: small bug in 5/98 distribution Sun 4070627 Eugene Bradley (Jul 24)