Date: Fri, 16 Oct 1998 14:04:16 -0400
From: Security Research Team <[email protected]>
To: [email protected]Subject: HP-UX 10.20 SharedX Receiver Service DoS [S.A.F.E.R-981014.DOS.1.2]
__________________________________________________________
S.A.F.E.R. Security Bulletin 981014.DOS.1.2
__________________________________________________________
TITLE : Vulnerability in SharedX Receiver Service (recserv)
DATE : October 14, 1998
NATURE : Denial-of-Service
PLATFORMS : HP-UX 10.20 (possibly others)
DETAILS:
By sending specific amount of characters to SharedX Receiver Service,
remote (and local) users can perform DoS attack against HP-UX 10.20 machine.
Recserv process reaches 100% (or less, depending on CPU usage by other
processes) 3-5 minutes after attack, and has to be killed and restarted.
FIXES:
Hewlett-Packard has been notified on 03-September-1998, but patch is not
available yet.
__________________________________________________________
S.A.F.E.R. - Security Alert For Entreprise Resources
Copyright (c) 1998 Siam Relay Ltd.
http://siamrelay.com/safer --- [email protected]
__________________________________________________________
