[5903] in bugtraq
Re: Crashing an XTACACS authentication server
daemon@ATHENA.MIT.EDU (Vikas Aggarwal)
Mon Jan 5 02:13:09 1998
Date: Mon, 5 Jan 1998 01:31:04 -0500
Reply-To: Vikas Aggarwal <vikas@NAVYA.COM>
From: Vikas Aggarwal <vikas@NAVYA.COM>
To: BUGTRAQ@NETSPACE.ORG
In-Reply-To: <19971223192110.12947.qmail@hotmail.com>
>I recently discovered that when an ISP was using XTACACS server from
>Vikas Aggarwal (vikas@navya.com) in a standalone mode, it was possible
>to make the XTACACS server crash by sending it different type of ICMP
>messages.
Thanks for pointing it out. The daemon was exiting if recvfrom() returned
an error- this has been fixed.
A beta version of the patched code is at ftp.navya.com.
-vikas
Vikas Aggarwal
vikas@navya.com
