('binary' encoding is not supported, stored as-is) Timbuktu 6.0.1 and Older DoS Advisory ************************************* Discovered by: Teknophreak of Malloc() ************************************** E-mail: Tekat_private "Timbuktu" is a remote administration suite that is available for MacOS and Windows operating systems. Timbuktu utilizes a range of ports between (1417 - 1420). There exist a Denial of Service vulnerability that will crash all timbuktu services running. To exploit this all you must do is choose one of the Timbuktu ports that are open and make a large number of connections to it and if you keep a watch you will see that all the Timbuktu ports available will close one by one. If your admin doesn't mind try this against the machine using timbuktu : #!/bin/sh while: do telnet tb2.host.com 1417 & done This will cause the timbuktu services to die out.
This archive was generated by hypermail 2b30 : Sat Jan 19 2002 - 11:11:55 PST