what you don't know can hurt you
Home Files News &[SERVICES_TAB]About Contact Add New

iplanet.dos.txt

iplanet.dos.txt
Posted Feb 24, 2000
Authored by Eiji Ohki

Sun iPlanet Web Server, Enterprise Edition 4.1 on Linux is vulnerable to a remote DoS attack. Many GET requests cause a kernel panic.

tags | exploit, remote, web, kernel
systems | linux
SHA-256 | 3d2d8fe606c710e7c1f85b7806cd14681cc6f8b5827957940ee2d1e143a45115

iplanet.dos.txt

Change Mirror Download
Hello,

I could find out the denial of service effected to iPlanet
Web Server, Enterprise Edition 4.1 on Linux 2.2.5(Redhat6.1J;
Kernel 2.2.12).

When I tried to send the request "GET" of seven hundred times
your product consumed all memory resouce and karnel paniced.
The size of GET command to your product was about a couple of
thousands.

But I could not find out any problem when I gave same situation
to the Enterprise Server International Edition 3.6SP2 on
Solaris 2.6J (Sparc), the Enterprise Server 3.6SP3 on Solaris
2.6J (Sparc) , the iPlanet Web Server, Enterprise Edition 4.0SP3
on Solaris 2.6J (Sparc) and the Apache httpd on Redhat6.1J.

For example, Apache is able to refuse the attack of DoS, when
the maximam number of fork() is defined propery.
Does this product do nothing?

I have posted this problem to Netscape by input-form on the web.
BUT I have no response from them for three weeks.
So I have sent to the staff of Netscape who use his influence
for me by Feb 18th. BUT he reply me NOTHING yet. They ignore me?

My original message to Netscape is follows.
(I typed and chose on the Web of Netscape.)
> ------------------------------
> From: ohki@lac.co.jp
> Subject: Denial of Service for the iPlanet Web Server, Enterprise Edition 4.1
>
> Submitter name: Eiji Ohki
> Submitter email address: ohki@lac.co.jp
> Acknowledgement checkbox: on
> Product: Enterprise Server
> Version: 4.1
> Operating system: Unix: Sun Solaris 2.x
> OS version: Linux 2.2.5(Redhat6.1J;Kernel 2.2.12
> Issue summary: Denial of service effected to Enterprise Server4.1.
>
> Issue details:
> Dear Sir/Madame,
>
> Hello,
>
> I could find out the denial of service effected to iPlanet
> Web Server, Enterprise Edition 4.1 on Linux 2.2.5(Redhat6.1J;
> Kernel 2.2.12).
>
> When I tried to send the request "GET" of seven hundred times
> your product consumed all memory resouce and karnel paniced.
> The size of GET command to your product was about a couple of
> thousands.
>
> But I could not find out any problem when I gave same situation
> to the Enterprise Server International Edition 3.6SP2 on
> Solaris 2.6J (Sparc), the Enterprise Server 3.6SP3 on Solaris
> 2.6J (Sparc) , the iPlanet Web Server, Enterprise Edition 4.0SP3
> on Solaris 2.6J (Sparc) and the Apache httpd on Redhat6.1J.
>
> Do you have any solutions about this problem ?
> For example, Apache is able to refuse the attack of DoS, when
> the maximam number of fork() is defined propery.
> By the way, I saw this problem is very informative.
> So can I post this isssue to Bugtraq and Bugtraq-JP?
>
>
>
> Severity: Server computer hangs/crashes
> Can reproduce?: Yes, Always
>
> Additional computer info:
> CPU:Celeron333MHz
> HD:4.3GB(total), 44% in use.
> Swap:150MB
> No XWindow
>
> ps.This input form do not have selection of OS "Linux".
> So I chose "Unix:Sun Solaris2.x" unwillingly.
> I think I have to choose "Linux: Redhat" or "PC-Unix: Linux".
>
>
> This form was submitted from http://help.netscape.com/forms/bug-server.html
> with Mozilla/4.7 [ja] (WinNT; I).
> ------------------------------


Regards,
Eiji Ohki


E I J I O H K I
ohki@lac.co.jp
http://www.lac.co.jp/security/


Login or Register to add favorites

File Archive:

March 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Mar 1st
    16 Files
  • 2
    Mar 2nd
    0 Files
  • 3
    Mar 3rd
    0 Files
  • 4
    Mar 4th
    32 Files
  • 5
    Mar 5th
    28 Files
  • 6
    Mar 6th
    42 Files
  • 7
    Mar 7th
    17 Files
  • 8
    Mar 8th
    13 Files
  • 9
    Mar 9th
    0 Files
  • 10
    Mar 10th
    0 Files
  • 11
    Mar 11th
    15 Files
  • 12
    Mar 12th
    19 Files
  • 13
    Mar 13th
    21 Files
  • 14
    Mar 14th
    38 Files
  • 15
    Mar 15th
    15 Files
  • 16
    Mar 16th
    0 Files
  • 17
    Mar 17th
    0 Files
  • 18
    Mar 18th
    10 Files
  • 19
    Mar 19th
    32 Files
  • 20
    Mar 20th
    46 Files
  • 21
    Mar 21st
    16 Files
  • 22
    Mar 22nd
    13 Files
  • 23
    Mar 23rd
    0 Files
  • 24
    Mar 24th
    0 Files
  • 25
    Mar 25th
    12 Files
  • 26
    Mar 26th
    31 Files
  • 27
    Mar 27th
    19 Files
  • 28
    Mar 28th
    42 Files
  • 29
    Mar 29th
    0 Files
  • 30
    Mar 30th
    0 Files
  • 31
    Mar 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close