[15251] in bugtraq
Mcafee Alerting DOS vulnerability
daemon@ATHENA.MIT.EDU (Harry Schmilllson)
Thu Jun 8 14:03:49 2000
Mime-Version: 1.0
Content-Type: text/plain; format=flowed
Message-Id: <20000607222807.35916.qmail@hotmail.com>
Date: Wed, 7 Jun 2000 15:28:07 PDT
Reply-To: Harry Schmilllson <schmilllson@HOTMAIL.COM>
From: Harry Schmilllson <schmilllson@HOTMAIL.COM>
To: BUGTRAQ@SECURITYFOCUS.COM
This is my first post to the list. Hope it's on traq!
I have found that the alerting mechanism in Mcafee's VirusScan 4.03 could
allow any network user to create unlimited "alerts" and send them to the
Central Alert server(s). The alerts from Win9X clients are in the form of a
formatted text file. This file includes info such as user name, computer
name, virus name, etc... A malicious user could format this text file and
insert any info desired including existing or non-existent usernames,
computer names, virus names etc.... The alert server receives these
messages in a share with everyone create, write and delete access. This
could be used in some very interesting ways!
________________________________________________________________________
Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com
