XFree86-xfs-4.0.1-1 DoS

[Jarosław Zachwieja <grok () mhd pl>]

Hello,

xfs from the package XFree86-xfs-4.0.1-1 (i386.rpm), RedHat 7.0 seems to 
suffer from a Denial of Service attack.
To cause xfs to stop responding for requests, try to do the fillowing:

$ telnet victim xfs </dev/urandom

Repeat about 100 (or 1000) times and you get Connection refused message.

Regular Xservers can no longer connect, usually crash stating Could not open 
default font 'fixed' and probably get disabled for 5 minutes if run from 
inittab.

I'd appreciate any succesfull/unsuccesfull attemps of reproducing this 
behaviour.

Regards,
--
Valentine M. Smith