[13746] in bugtraq

home help back first fref pref prev next nref lref last post

Novell GroupWise 5.5 Enhancement Pack Web Access Denial of Servic

daemon@ATHENA.MIT.EDU (Adam Gray)
Tue Feb 8 02:33:29 2000

Mime-Version: 1.0
Content-Type: text/plain; charset="iso-8859-1"
Message-Id:  <CB068FFE4872BE4D81D729A32F20E71E1A1F@GRAYHOME.gray.com>
Date:         Mon, 7 Feb 2000 17:06:07 -0800
Reply-To: Adam Gray <agray@NOVACOAST.COM>
From: Adam Gray <agray@NOVACOAST.COM>
X-To:         "bugtraq@securityfocus.com" <bugtraq@securityfocus.com>
To: BUGTRAQ@SECURITYFOCUS.COM

Discussion
There is a DOS attack that can be run against Novell GroupWise Web Access
5.5 Enhancement Pack. The Java Server is possible to crash with a long
character string sent to the servlet gateway using a web browser. This DOS
can cause the Netscape web server to abend, the Java.nlm to take all of the
processor utilization, or the post office can simple stop responding. This
DOS attack will kill any active GroupWise based connections to the GroupWise
server. The server typically requires a reboot to fix the problem. This bug
has been confirmed by Novell with instruction from novacoast.

Exploit
http://servername/servlet/<garbage string of characters 200 or more>

Solution
GroupWise Enhancement Pack 5.5 Sp1
This patch is still in beta. It should be released in the next few weeks. It
can be obtained by contacting Novell Technical Support



Adam Gray
Vice President Technology
novacoast
agray@novacoast.com
805-568-0171

home help back first fref pref prev next nref lref last post