Novell Border Manager 审查跟踪代理的拒绝服务漏洞

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1105702 漏洞类型 设计错误
发布时间 2000-02-04 更新时间 2005-05-02
CVE编号 CVE-2000-0152 CNNVD-ID CNNVD-200003-053
漏洞平台 Novell CVSS评分 5.0
|漏洞来源
https://www.exploit-db.com/exploits/19746
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200003-053
|漏洞详情
NovellBorderManager3.5存在漏洞,远程攻击者可以通过在2000端口的telnet连接中键入enter键促发拒绝服务。
|漏洞EXP
source: http://www.securityfocus.com/bid/976/info

A feature called the CS Audit Trail Proxy is installed by default with BorederManager 3.0 and 3.5 .This feature opens a listening port at port 2000, on both the internal and external interfaces. If a connection is made to this port and the 'enter' key hit a few times, the server will start experincing memory allocation problems. Eventually the server will have to be rebooted to restore normal functionality.

The CS Audit Trail Proxy is handled by CSATPRX.NLM

telnet target:2000
<enter>
<enter>
|参考资料

来源:BID
名称:976
链接:http://www.securityfocus.com/bid/976
来源:OSVDB
名称:7468
链接:http://www.osvdb.org/7468