Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com

Neohapsis > Archives > NTBugtraq> 1999-q4

NTBugtraq And NTSecurity Archives: Remote DoS Attack in WorldCl

Remote DoS Attack in WorldClient Server v2.0.0.0 Vulnerability

Ussr Labs (labsUSSRBACK.COM)
Wed, 24 Nov 1999 22:21:11 -0300

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Next message: Jonathan M. Gilligan: "Final word: Eudora and malicious HTML"
Previous message: Chris Tobkin: "Re: APC PowerChute Plus 5.1 NT (Denial of Service Attack)."
Next in thread: John Liss: "Re: Remote DoS Attack in WorldClient Server v2.0.0.0 Vulnerability"
Reply: John Liss: "Re: Remote DoS Attack in WorldClient Server v2.0.0.0 Vulnerability"

PROBLEM:
UssrLabs found a buffer overflow in WorldClient Server v2.0.0.0 where they
do not use proper bounds checking.
The following all result in a Denial of Service against the service in
question.

affected services:

WorldClient: Port 2000

This two remotes services are affected to overflow of you send a large url
name.

Like: http:/serverip/aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa

For the Binary / Source for this WorldClient Server v2.0.0.0 Denial of
Service:

Go To: http://www.ussrback.com/mdeam285/

Vendor Status:
Contacted.

Vendor Url: http://www.mdaemon.com

Credit: USSRLABS

SOLUTION
Nothing yet.

u n d e r g r o u n d s e c u r i t y s y s t e m s r e s e a r c h
http://www.ussrback.com

Next message: Jonathan M. Gilligan: "Final word: Eudora and malicious HTML"
Previous message: Chris Tobkin: "Re: APC PowerChute Plus 5.1 NT (Denial of Service Attack)."
Next in thread: John Liss: "Re: Remote DoS Attack in WorldClient Server v2.0.0.0 Vulnerability"
Reply: John Liss: "Re: Remote DoS Attack in WorldClient Server v2.0.0.0 Vulnerability"

This archive was generated by hypermail 2.0b3 on Mon Nov 29 1999 - 12:22:31 CST