Re: Netscape Messaging Server RCPT TO vul.

From: Nobuo Miwa (n-miwaat_private)
Date: Fri Oct 29 1999 - 11:17:52 PDT

Next message: Tellier, Brock: "Amanda multiple vendor local root compromises"

Previous message: Goblin: "DoS attack for ircd's by oversized PTR record"
Maybe in reply to: Nobuo Miwa: "Netscape Messaging Server RCPT TO vul."
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Thank you for good information.

But, Netscape Messaging Server(NMS) cannot filter following
patterns..

rcpt to: postmasterat_private  <-- correct address
rcpt to: postmasterat_private
  ...
  unlimited times
  ...

I guess NMS allocate all RCPT TO in NT's memory by malloc() and
somehow they never free them. That's the problem.
AND you cannot see any log after this attack.

Ciao

<Nobuo Miwa> n-miwaat_private  ( @ @ ) http://www.lac.co.jp/security/
--------------------------o00o--(. .)--o00o--------------------------

Next message: Tellier, Brock: "Amanda multiple vendor local root compromises"
Previous message: Goblin: "DoS attack for ircd's by oversized PTR record"
Maybe in reply to: Nobuo Miwa: "Netscape Messaging Server RCPT TO vul."
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Fri Apr 13 2001 - 15:09:13 PDT