[13819] in bugtraq
Timbuktu Pro 2.0b650 DoS
daemon@ATHENA.MIT.EDU (Laurent LEVIER)
Mon Feb 14 14:31:14 2000
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Message-Id: <4.2.0.58.20000211204020.00994c00@194.98.103.230>
Date: Fri, 11 Feb 2000 20:43:30 +0100
Reply-To: Laurent LEVIER <llevier@ARGOSNET.COM>
From: Laurent LEVIER <llevier@ARGOSNET.COM>
X-To: BUGTRAQ@SECURITYFOCUS.COM
To: BUGTRAQ@SECURITYFOCUS.COM
Cheers,
I found a Timbukto Pro (Remote Control NT Tool) vulnerability.
Concerned product : Timbuktu Pro 2.0b650 on Windows NT 4.0 until sp5
"Exploit" is :
- Connect and disconnect on port TCP/407 to make port TCP/1417 listening
- Connect on port TCP/1417 with a simple telnet.
- Disconnect from TCP/1417 (no data exchange).
Authentication protocol waits indefinitely.
This brings Timbukto Remote Control Denial-of-Service on control. Physical
contact is then needed to restart it.
Solution to get back operational:
- Kill timbuktu process (using pslist/pskill for example)
- Stop Timbuktu services
- Start them again.
Patches:
Not yet
Netopia is now aware of this.
Best regards
Laurent LEVIER
IT Systems & Networks, Unix System Engineer
Security Specialist
Argosnet Security Server : http://www.Argosnet.com
"Le Veilleur Technologique", "The Technology Watcher"
