Vulners
Lucene search
iParty-DoS.txt
`Date: Mon, 30 Nov 1998 21:46:52 -0600
From: HD Moore <[email protected]>
Reply-To: Bugtraq List <[email protected]>
To: [email protected]
Subject: iParty can be shut down remotely
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
iParty is an audio/text chat program for Windows. The iParty server
listens on a specified port (6004 is default) for client requests. If
someone connects to the chat server and sends a large amount of '^?'
characters (ASCII 255 or Hex FF), the server will simply close itself
and disconnect all the current users. Nothing shows up in the log
file, and the attacker does not need to know the 'chat room' name.
iParty seems to use a modified version of the X-Win protocol, as it
uses the same format as X for session request responses. The easiest
way to exploit this hole is:
cat /dev/kmem | telnet targetserver.com 6004
More information on iParty can be found at www.bumpkinland.com.
-----BEGIN PGP SIGNATURE-----
Version: PGP for Personal Privacy 5.0
Charset: noconv
iQA/AwUBNmNmc651X44hunVSEQIGGwCg5lCksOcFT4IEEyowtlOs75fu/2wAn3ZI
pEmwwfuOgrfsz9crATI499rB
=BwmD
-----END PGP SIGNATURE-----
`
Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
17 Aug 1999 00:00Current
7.4High risk
Vulners AI Score7.4