Bugtraq mailing list archives
Re: Sample DOS against the Sambar HTTP-Server
From: conrad.d () GMX DE (Dennis Conrad)
Date: Sat, 9 Oct 1999 03:17:47 +0200
First of all: The DoS WORKS. Tod Sambar himself tested it and found his server vulnerable. But: You´re right Steve!
print $remote "GET " . "X" x 99999999999999999999 . " HTTP/1.0\n\n";
Ther are too many 9s. My Perl (v.5005_02 running an Linux 2.2.12) only prints a "GET<space><space>HTTP/1.0" as well. If you use a few 9s less, you´ll get a "Out of memory". I´m really sorry about this, but I´m not an experienced programmer and it was late at night when threw this together.
I conclude that the script as posted will not DoS the server even if it is vulnerable, unless a simple "GET HTTP/1.0" triggers the DoS.
Well, it WILL DoS the server, but due to the lack of an Windows box I can´t say if there have to be two <space>s or one is enough.
I suggest that until the nature of the DoS is clarified anyone using the script to test their own server should try it as-is, then try it with fewer 9s (probably 9999 or 99999, maybe more if it's a resource exhaustion DoS).
No, that definetly does NOT work. Thanks to Steve for reporting this. My failure. Please note that the version on http://www.sambar.com is STILL vulnerable and there has been NO security advise by Tod Sambar! \---------------------[ Dennis Conrad ]-----------------\ \-------------------[ conrad.d () gmx de ]-----------------\ \---------[ http://www.linuxstart.com/~dennis ]---------\
Current thread:
- Re: [Fwd: Truth about ssh 1.2.27 vulnerabiltiy], (continued)
- Re: [Fwd: Truth about ssh 1.2.27 vulnerabiltiy] Dan Astoorian (Oct 01)
- Re: [Fwd: Truth about ssh 1.2.27 vulnerabiltiy] Jeff Long (Oct 04)
- Re: [Fwd: Truth about ssh 1.2.27 vulnerabiltiy] Valdis.Kletnieks () VT EDU (Oct 01)
- Team Asylum: iHTML Merchant (Follow-up) Team Asylum (Oct 01)
- RFP9903: AeDebug vulnerability .rain.forest.puppy. (Oct 01)
- Re: RFP9903: AeDebug vulnerability Matt (Oct 04)
- Re: [Fwd: Truth about ssh 1.2.27 vulnerabiltiy] Pavel Kankovsky (Oct 02)
- Buffer Overflows and Remote Root Exploits Crispin Cowan (Oct 02)
- (no subject) Dennis Conrad (Oct 03)
- Re: Sample DOS against the Sambar HTTP-Server Steve (Oct 06)
- Re: Sample DOS against the Sambar HTTP-Server Dennis Conrad (Oct 08)
- Re: Sample DOS against the Sambar HTTP-Server syz (Oct 09)
- Re: Sample DOS against the Sambar HTTP-Server Steve (Oct 06)
- Re: [Fwd: Truth about ssh 1.2.27 vulnerabiltiy] Dan Astoorian (Sep 30)
- Re: [Fwd: Truth about ssh 1.2.27 vulnerabiltiy] Casper Dik (Oct 01)
- RFP9904: TeamTrack webserver vulnerability .rain.forest.puppy. (Oct 02)
- Fix for ssh-1.2.27 symlink/bind problem Scott Gifford (Oct 02)
- Re: Fix for ssh-1.2.27 symlink/bind problem Eivind Eklund (Oct 04)
- Re: Fix for ssh-1.2.27 symlink/bind problem Toomas Kiisk (Oct 05)
- Re: Fix for ssh-1.2.27 symlink/bind problem Olaf Seibert (Oct 04)
- Re: Fix for ssh-1.2.27 symlink/bind problem Dan Astoorian (Oct 05)
- Weakness In "The Matrix" Screensaver For Windows Boyce, Nick (Oct 04)
- Re: [Fwd: Truth about ssh 1.2.27 vulnerabiltiy] Dan Astoorian (Oct 01)