[11314] in bugtraq
Re: Nifty DoS in Foundry networks gear.
daemon@ATHENA.MIT.EDU (Valentin Beck)
Mon Aug 9 17:36:07 1999
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Message-Id: <19990807003956.A20302@blaw.grolier.fr>
Date: Sat, 7 Aug 1999 00:39:56 +0200
Reply-To: Valentin Beck <vb@GROLIER.FR>
From: Valentin Beck <vb@GROLIER.FR>
X-To: "Jan B. Koum" <jkb@BEST.COM>
To: BUGTRAQ@SECURITYFOCUS.COM
In-Reply-To: <19990805195347.A18858@best.com>; from Jan B. Koum on Thu,
Aug 05, 1999 at 07:53:47PM -0700
On Thu, Aug 05, 1999 at 07:53:47PM -0700, Jan B. Koum wrote:
> It seem I am not able to re-produce the problem any more. So...
> sorry and never mind. I'll go sit in the corner now.
>
> -- Yan
I tried it... and I reproduced the problem as you say.
telnet@something>sh ver
SW: Version 05.0.03T12 Copyright (c) 1996-1999 Foundry Networks, Inc.
Compiled on Jun 29 1999 at 10:56:44 labeled as SLB05003
HW: ServerIron Switch, serial number 02bb34
240 MHz Power PC processor 603 (revision 7) with 32756K bytes of DRAM
16 100BaseT interfaces with Level 1 Transceiver LXT975
2 GIGA uplink interfaces, SX
[bla bla bla]
Octal System, Maximum Code Image Size Supported: 1965568 (0x001dfe00)
The system uptime is 1 days 8 hours 41 minutes 6 seconds
System was running normally while i was nmapping, and crashed a few minutes
later...
> On Mon, Aug 02, 1999 at 04:58:43PM -0700, "Jan B. Koum " <jkb> wrote:
> >
> > Running tcp nmap scan against Foundry network gear make it go boom.
> > What makes it more sad is that Foundry is in the networking business -- they
> > route packets. They don't make toasters which get it's tcp/ip stack written by
> > a recent CS grad. Anyway, the version I have which reboots after simple
> > "nmap <host>" is:
> >
> > telnet@XXX.mail#sh ver
> > SW: Version 05.0.94T13 Copyright (c) 1996-1999 Foundry Networks, Inc.
> > Compiled on Jun 8 1999 at 15:46:09 labeled as N8R05094
> > HW: NetIron Gigabit Switching Router, serial number 01a5a4
> > 200 MHz Power PC processor 603 (revision 7) with 32756K bytes of DRAM
> > 16 100BaseT interfaces with Level 1 Transceiver LXT975
> > 2 GIGA uplink interfaces, SX
> > [.. snip ..]
> >
> > Octal System, Maximum Code Image Size Supported: 1965568 (0x001dfe00)
> > The system uptime is 1 minutes 47 seconds
> >
> >
> > This is NetIron series -- not sure about other hardware...
> >
> > I notified Foundry two weeks ago -- but they do not seem to be able
> > to reproduce the problem themself (I also wasn't able to crash a foundry on
> > our LAN running 05.0.02T13 version of their software).
> >
> >
> > -- Yan
--
____ _
/ ___(_) ___ Valentin Beck, vb@grolier.fr
| | _| |/ _ \ Unix Systems administrator
| |_| | | __/ Grolier Interactive Europe
\____|_|\___| Online Groupe - Club Internet
