[15176] in bugtraq


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: [rootshell.com] Xterm DoS Attack

daemon@ATHENA.MIT.EDU (Walt)
Fri Jun 2 17:54:49 2000

Mime-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Message-Id:  <Pine.LNX.4.04.10006012122560.5072-100000@willy.armour.cx>
Date:         Thu, 1 Jun 2000 21:24:09 -0700
Reply-To: Walt <walt@ARMOUR.CX>
From: Walt <walt@ARMOUR.CX>
X-To:         Kit Knox <kit@ROOTSHELL.COM>
To: BUGTRAQ@SECURITYFOCUS.COM
In-Reply-To:  <Pine.LNX.4.21.0006011118280.17559-100000@ruff>

On Thu, 1 Jun 2000, Kit Knox wrote:

> /*
>  *
>  * xterm Denial of Service Attack
>  * (C) 2000 Kit Knox <kit@rootshell.com> - 5/31/2000
>  *
>  * Tested against: xterm (XFree86 3.3.3.1b(88b)  -- crashes
>  *                 rxvt v2.6.1 -- consumes all available memory and then
>  *                                crashes.
>  *
>  * Not vulnerable: KDE konsole 0.9.11
>  *                 Secure CRT 3.0.x
>  *

Confirmed also against Eterm 0.8.10.

In fact, it took X all the way down (XFree86 4.0).


walt


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[15176] in bugtraq

Re: [rootshell.com] Xterm DoS Attack

daemon@ATHENA.MIT.EDU (Walt)Fri Jun 2 17:54:49 2000

daemon@ATHENA.MIT.EDU (Walt)
Fri Jun 2 17:54:49 2000