[8227] in bugtraq
HP-UX 10.20 SharedX Receiver Service DoS
daemon@ATHENA.MIT.EDU (Security Research Team)
Fri Oct 16 14:26:45 1998
Date: Fri, 16 Oct 1998 14:04:16 -0400
Reply-To: Security Research Team <security@SIAMRELAY.COM>
From: Security Research Team <security@SIAMRELAY.COM>
To: BUGTRAQ@NETSPACE.ORG
__________________________________________________________
S.A.F.E.R. Security Bulletin 981014.DOS.1.2
__________________________________________________________
TITLE : Vulnerability in SharedX Receiver Service (recserv)
DATE : October 14, 1998
NATURE : Denial-of-Service
PLATFORMS : HP-UX 10.20 (possibly others)
DETAILS:
By sending specific amount of characters to SharedX Receiver Service,
remote (and local) users can perform DoS attack against HP-UX 10.20 machine.
Recserv process reaches 100% (or less, depending on CPU usage by other
processes) 3-5 minutes after attack, and has to be killed and restarted.
FIXES:
Hewlett-Packard has been notified on 03-September-1998, but patch is not
available yet.
__________________________________________________________
S.A.F.E.R. - Security Alert For Entreprise Resources
Copyright (c) 1998 Siam Relay Ltd.
http://siamrelay.com/safer --- security@siamrelay.com
__________________________________________________________
