Skip navigation
Menu
End-User Platforms>Windows 7/8

Denial of Service in GoodTech Systems Telnet Server for Windows

Reported January 5, 2004 by Donato Ferrante.

 

 

VERSIONS AFFECTED

 

  • GoodTech Systems Telnet Server 4.0.103

 

DESCRIPTION

 

GoodTech Systems Telnet Server 4.0.103 contains a Denial of Service (DoS) vulnerability. By sending an overly long string as input to the vulnerable server, an attacker can cause the server to stop responding.

 
DEMONSTRATION
 
The discoverer posted the following demonstration as proof of concept:

 

To test the vulnerability, simply send a long string to the Telnet server, perl -e 'print "a"x8245' | nc server 23

Alternatively, a string like :
aaaa\[..a..\]aa ( 8245 of a )

 

VENDOR RESPONSE

 

GoodTech Systems has released version 4.0.104, which isn't vulnerable to this condition.

 

CREDIT

 

Discovered by Donato Ferrante.

TAGS: Security
Hide comments

More information about text formats

Comments

  • Allowed HTML tags: <em> <strong> <blockquote> <br> <p>

Plain text

  • No HTML tags allowed.
  • Web page addresses and e-mail addresses turn into links automatically.
  • Lines and paragraphs break automatically.
Publish
Recommended Reading
PowerShell screenshot shows Where-Object cmdlet
How to Use the PowerShell Where-Object Cmdlet
Aug 04, 2022
shield_icon_laptop.jpg
What To Do When Windows Defender Is Not Working
Mar 15, 2022
Computer Screen Showing Password Dialog Box
Microsoft Edge Downloads Updated for Azure AD Sign-In & Sync
Aug 22, 2019
mktg-wp-nolabel5
How to Approach the Windows 7 to 10 Migration
Aug 01, 2019