DoS in Hotsync Manager (with network hotsync enabled)

From: Gary H. Jones II (garyat_private)
Date: Wed Jan 22 2003 - 17:23:09 PST

Next message: secureat_private: "[CLA-2003:561] Conectiva Linux Security Announcement - cvs"

Previous message: http-equivat_private: "SPRINT ADSL [Zyxel 645 Series Modem]"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Tested with HotSync Manager version 4.0.4.0

If you connect to the port HotSync Manager listens on for a network =
request
telnet 127.0.0.1 14238

And send the data "OK    ATDT<" followed by CRLF

A message will appear
"Out of memory. Please free some memory, then choose retry"
It will give you option for abort, retry, ignore.

If you choose ignore, or retry, Hotsync Manager will just hang until the =
process is terminated.
If you choose abort, you get "Runtime Error!" abnormal program =
termination, and it will close.

I haven't seen this particular type of DoS on HotSync Manager anywhere.

Regards,
Gary H. Jones II
Point Blank Security
www.pointblanksecurity.com

Next message: secureat_private: "[CLA-2003:561] Conectiva Linux Security Announcement - cvs"
Previous message: http-equivat_private: "SPRINT ADSL [Zyxel 645 Series Modem]"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Thu Jan 23 2003 - 10:47:14 PST