Penetration Testing mailing list archives
RE: Port scan causing system crashes
From: "Steve Goldsby (ICS)" <sgoldsby () networkarmor com>
Date: Thu, 12 Jun 2003 13:38:35 -0500
DGUX 2.x and below definitely die upon port scan, just like old versions of solaris (syn flood vulnerability). -----Original Message----- From: Helmut Springer [mailto:delta () lug-s org] Sent: Thursday, June 12, 2003 11:31 AM To: pen-test () securityfocus com Cc: steve.x.jones () royalmail com Subject: Re: Port scan causing system crashes Hi, On 12 Jun 2003 at 13:23 +0200, steve.x.jones () royalmail com wrote:
Please can you help? Has any-one else out there had issues with NMAP port scans (or any other port scanner) causing systems to crash?
Yes.
I've done a quick Google search and found confirmation for one of the systems - BUGTRAQ Vulnerability 3358, "IBM HACMP Port Scan Denial of Service Vulnerability", the other was a bespoke app running on some HP UX boxes.
Document ID: HPSBUX0306-264 Date Loaded: 20030604 Title: SSRT3460 Network traffic can cause programs to fail [...] A. Background Certain network traffic can cause programs to fail. An example of potentially vulnerable program is diagmond. [...]
Up til now I've been running port scans happily across our subnets to look for rogue FTP, SMTP, HTTP etc, obviously I'll have to take more care now...
One might say that you just find systems vulnerable to DoS attacks this way, but in general scanning a pruduction environment always carries a risk... -- MfG/Best Regards, "If we keep our pride... helmut springer Though paradise is lost We will pay the price, But we will not count the cost." ------------------------------------------------------------------------ --- ------------------------------------------------------------------------ ---- --------------------------------------------------------------------------- ----------------------------------------------------------------------------
Current thread:
- Port scan causing system crashes steve . x . jones (Jun 12)
- Re: Port scan causing system crashes Helmut Springer (Jun 12)
- Re: Port scan causing system crashes Anthony Kim (Jun 12)
- Re: Port scan causing system crashes Adam Carter (Jun 13)
- <Possible follow-ups>
- RE: Port scan causing system crashes OBrien, Brennan (Jun 12)
- Re: Port scan causing system crashes MARTIN M. Bénoni (Jun 12)
- RE: Port scan causing system crashes Whiteside, Larry [contractor] (Jun 12)
- Re: Port scan causing system crashes Clem Skorupka (Jun 12)
- Re: Port scan causing system crashes Renaud Deraison (Jun 12)
- Re: Port scan causing system crashes Clem Skorupka (Jun 12)
- Re: Port scan causing system crashes Clem Skorupka (Jun 12)
- RE: Port scan causing system crashes Steve Goldsby (ICS) (Jun 12)
- Re: Port scan causing system crashes Death Star (Jun 12)
- RE: Port scan causing system crashes Brass, Phil (ISS Atlanta) (Jun 12)
- Re: Port scan causing system crashes Kevin Pietersma (Jun 13)
- FW: Port scan causing system crashes Brewis, Mark (Jun 13)
- RE: Port scan causing system crashes Martin Walker (Jun 16)
- RE: Port scan causing system crashes Death Star (Jun 16)