|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Subject: DST2K0028: DoS in FUR HTTP Server v1.0b
From: Security Team (SecurityTeam
DELPHISPLC.COM)Date: Thu Sep 14 2000 - 11:32:48 CDT
- Next message: Microsoft Security Response Center: "Re: Win2k Telnet.exe malicious server vulnerability"
- Previous message: Steve: "Win2k Telnet.exe malicious server vulnerability"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
============================================================================
Delphis Consulting Plc
============================================================================
Security Team Advisories
[12/09/2000]
securityteamdelphisplc.com
[http://www.delphisplc.com/thinking/whitepapers/]
============================================================================
Adv : DST2K0028
Title : DoS in FUR HTTP Server v1.0b
Author : DCIST (securityteamdelphisplc.com)
O/S : Microsoft Windows Nt 2000 Workstation (SP1)
Product : FUR HTTP Server v1.0b
Date : 12/09/2000
I. Description
II. Solution
III. Disclaimer
============================================================================
I. Description
============================================================================
Vendor URL: http://www.fastream.com/
Delphis Consulting Internet Security Team (DCIST) discovered the following
vulnerability in FUR HTTP Server under Windows NT.
Severity: medium
It is possible to cause FUR Http server crash with a invalid procedure call.
This is done by connecting to port 80 upon which FUR listens on and sending
3k of DATA as a GET string. This will cause the HTTP server to crash.
II. Solution
============================================================================
Vendor Status: Informed
Currently there is no know solution to this problem. Delphis Internet
Security team would advise users of this product to perform one of two
actions.
a) Restrict the IP addresses which are able to connect to your machine by
the use of a Firewall, Router ACL or Microsoft TCP/IP advanced settings.
b) Use another vendors HTTP daemon as a temporary measure until this has
been
resolved.
III. Disclaimer
============================================================================
THE INFORMATION CONTAINED IN THIS ADVISORY IS BELIEVED TO BE ACCURATE AT
THE TIME OF PRINTING, BUT NO REPRESENTATION OR WARRANTY IS GIVEN, EXPRESS OR
IMPLIED, AS TO ITS ACCURACY OR COMPLETENESS. NEITHER THE AUTHOR NOR THE
PUBLISHER ACCEPTS ANY LIABILITY WHATSOEVER FOR ANY DIRECT, INDIRECT OR
CONSEQUENTIAL LOSS OR DAMAGE ARISING IN ANY WAY FROM ANY USE OF, OR RELIANCE
PLACED ON, THIS INFORMATION FOR ANY PURPOSE.
============================================================================
This e-mail and any files transmitted with it are intended solely for the
addressee and are confidential. They may also be legally
privileged.Copyright in them is reserved by Delphis Consulting PLC
["Delphis"] and they must not be disclosed to, or used by, anyone other than
the addressee.If you have received this e-mail and any accompanying files in
error, you may not copy, publish or use them in any way and you should
delete them from your system and notify us immediately.E-mails are not
secure. Delphis does not accept responsibility for changes to e-mails that
occur after they have been sent. Any opinions expressed in this e-mail may
be personal to the author and may not necessarily reflect the opinions of
Delphis
_____________________________________________________________________
** TO UNSUBSCRIBE, send the command "UNSUBSCRIBE win2ksecadvice"
** FOR A WEEKLY DIGEST, send the command "SET win2ksecadvice DIGEST"
SEND ALL COMMANDS TO: listservlistserv.ntsecurity.net
- Next message: Microsoft Security Response Center: "Re: Win2k Telnet.exe malicious server vulnerability"
- Previous message: Steve: "Win2k Telnet.exe malicious server vulnerability"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]