Xfs X Font Server Can Be Crashed by Remote Users
|
|
SecurityTracker Alert ID: 1001714 |
|
SecurityTracker URL: http://securitytracker.com/id/1001714
|
|
CVE Reference:
GENERIC-MAP-NOMATCH
(Links to External Site)
|
Date: Jun 9 2001
|
Impact:
Denial of service via network
|
Exploit Included: Yes
|
Version(s): XFree86-xfs-4.0.1-1 (i386.rpm)
|
Description:
It is reported that Xfs from the Red Hat XFree86-xfs-4.0.1-1 package can be made by remote users to stop responding to requests.
By repeating the following type of request approximately 100 - 1000 times, a remote user will receive a "connection refused" message:
$ telnet victim xfs </dev/urandom
At this point, no Xservers will be able to connect to the font server.
|
Impact:
A remote user can cause the Xfs font server to stop responding to connection requests.
|
Solution:
No solution was available at the time of this entry.
|
Cause:
Exception handling error
|
Underlying OS:
Linux (Any), UNIX (Any)
|
|
Message History:
None.
|
Source Message Contents
|
Date: Wed, 6 Jun 2001 16:31:49 +0200
Subject: XFree86-xfs-4.0.1-1 DoS
|
Hello,
xfs from the package XFree86-xfs-4.0.1-1 (i386.rpm), RedHat 7.0 seems to
suffer from a Denial of Service attack.
To cause xfs to stop responding for requests, try to do the fillowing:
$ telnet victim xfs </dev/urandom
Repeat about 100 (or 1000) times and you get Connection refused message.
Regular Xservers can no longer connect, usually crash stating Could not open
default font 'fixed' and probably get disabled for 5 minutes if run from
inittab.
I'd appreciate any succesfull/unsuccesfull attemps of reproducing this
behaviour.
Regards,
--
Valentine M. Smith
|
|
