WorldClient 2.0 Subject to DoS - 24 Nov 1999

 
WorldClient Server v2.0.0.0 Subject to DoS
Reported November 25, 1999 by
USSRLABS
VERSIONS AFFECTED
  • WorldClient Server v2.0.0.0

DESCRIPTION

USSRLabs discovered serveral denial of service conditions in Deerfield.com"s WorldClient Server v2.0.0.0. The problems are the result of buffer overflow conditions within the program code.

DEMONSTRATION

The problem affects the WorldClient service on port 2000. By sending a very long URL to the service listening on the port the service can be made to crash, thereby denying service to valid users.

VENDOR RESPONSE

UssrLabs notified Deefield.com about this problem, however no response is unknown at this time.

CREDITS
Discovered by USSRLABS
Hide comments

Comments

  • Allowed HTML tags: <em> <strong> <blockquote> <br> <p>

Plain text

  • No HTML tags allowed.
  • Web page addresses and e-mail addresses turn into links automatically.
  • Lines and paragraphs break automatically.
Publish