[11848] in bugtraq
Re: local telnetd DoS
daemon@ATHENA.MIT.EDU (George)
Sat Sep 11 18:10:03 1999
Mime-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Message-Id: <Pine.LNX.3.96.990910115420.13570A-100000@orca.akula.com>
Date: Fri, 10 Sep 1999 11:59:06 -0400
Reply-To: George <promo@AKULA.COM>
From: George <promo@AKULA.COM>
X-To: Zo0mer <slackware@MAIL.RU>
To: BUGTRAQ@SECURITYFOCUS.COM
In-Reply-To: <002701bef945$c17543e0$b21e22c3@darkstar>
What this does is get the telnetd service kicked out by inetd..by using a
similar method with numerous rapid connections, you can shut-down any tcp
service running under inetd, ie. ftpd, identd, etc, just by connecting to
the port each service is listening on. Until a fix is out, it might be
wise to crontab a HUP to inetd every few minutes, so that if somebody
takes out your telnet service, you can log back in eventually.
George
On Tue, 7 Sep 1999, Zo0mer wrote:
> Hi,i found local DoS that Crash telnetd (tested on Slackware 4.0, RH 5.2)
> type
> telnet localhost | telnet localhost | telnet localhost ...... about 50 times
> result will be 'Connection Refused' , telnetd crash.
>
> Zo0mer // kpz2000
>
