|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Remote DoS Attack in BFTelnet Server v1.1 for Windows NT
Ussr Labs (labs
USSRBACK.COM)
Thu, 4 Nov 1999 05:10:32 -0300
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
- Next message: devbugsAPPLE.COM: "Re: Mac OS 9 Idle Lock Bug"
- Previous message: Kerb: "More Alibaba Web Server problems..."
Remote DoS Attack in BFTelnet Server v1.1 for Windows NT
PROBLEM
UssrLabs found a Remote DoS Attack in BFTelnet Server v1.1 for Windows NT,
the buffer overflow is caused by a long user name 3090 characters.
If BFTelnet Server is running as a service the service will exit and no
messages
are displayed on the screen.
There is not much to expand on.... just a simple hole
Example:
palometahellme]$ telnet example.com
Trying example.com...
Connected to example.com.
Escape character is '^]'.
Byte Fusion Telnet, Copyright 1999 Byte Fusion Corporation
Unregistered Evaluation. See www.bytefusion.com/telnet.html
(Machine name) Login: [buffer]
Where [buffer] is aprox. 3090 characters. At his point the telnet server
close.
Vendor Status:
Contacted
Vendor Url: www.bytefusion.com
Program Url: www.bytefusion.com/telnet.html
Credit: USSRLABS
SOLUTION
Nothing yet.
- Next message: devbugsAPPLE.COM: "Re: Mac OS 9 Idle Lock Bug"
- Previous message: Kerb: "More Alibaba Web Server problems..."
This archive was generated by hypermail 2.0b3 on Thu Nov 04 1999 - 12:04:46 CST