Compaq Tru64 Networking Stack Allows Remote Users to Cause Connections to Freeze
|
Updated: Jan 31 2002
|
Original Entry Date: Jan 31 2002
|
Impact: Denial of service via network
|
Exploit Included: Yes
|
Description: A denial of service vulnerability was reported in Compaq's Tru64 operating system's networking stack. A remote user can cause connections to freeze and/or be blocked.
It is reported that a remote user can conduct a network scan (using nmap, for example) against a Compaq Tru64 host to cause the telnet
and ftp connections to freeze and timeout. It is reported that new connections will be denied for a temporary period of time (~
1 minute).
The following nmap command line was used to trigger this flaw:
nmap -T Polite -O -p 23,139 -oM /tmp/lst 'xxx.xxx.16-44.*'
|
Impact: A remote user can cause the operating system's networking stack to freeze connections and refuse new connections for a period of time.
|
Solution: No solution was available at the time of this entry.
|
Vendor URL: www.tru64unix.compaq.com/ (Links to External Site)
|
Cause: Exception handling error
|
Underlying OS: UNIX (Tru64)
|
Underlying OS Comments: Tru64 Unix 4.0D patch kit 3 on Alpha 4100's and 8400's
|
Reported By: "Jason Johns - SAS(IT)" <JJohns@SAS.Samsung.com>
|
Message History:
None.
|
Source Message Contents
|
Date: Wed, 30 Jan 2002 10:27:21 -0600
From: "Jason Johns - SAS(IT)" <JJohns@SAS.Samsung.com>
Subject: DoS bug on Tru64
|
Today we were using nmap to scan our network and when we scanned our
Tru64 machines, telnet and ftp froze and timed out. We could not make
any connections to those ports and existing connections froze. New
connections were denied for about a minute after the scan was finished.
I've checked with Compaq and on Securityfocus and neither place has any
knowledge of this.
We are running Tru64 Unix 4.0D patch kit 3 on Alpha 4100's and 8400's.
The nmap command line that was used is:
nmap -T Polite -O -p 23,139 -oM /tmp/lst 'xxx.xxx.16-44.*'
/Jason Johns
|
|
