what you don't know can hurt you
Home Files News &[SERVICES_TAB]About Contact Add New

iplanet.dos.txt

iplanet.dos.txt
Posted Feb 24, 2000
Authored by Eiji Ohki

Sun iPlanet Web Server, Enterprise Edition 4.1 on Linux is vulnerable to a remote DoS attack. Many GET requests cause a kernel panic.

tags | exploit, remote, web, kernel
systems | linux
SHA-256 | 3d2d8fe606c710e7c1f85b7806cd14681cc6f8b5827957940ee2d1e143a45115

iplanet.dos.txt

Change Mirror Download
Hello,

I could find out the denial of service effected to iPlanet
Web Server, Enterprise Edition 4.1 on Linux 2.2.5(Redhat6.1J;
Kernel 2.2.12).

When I tried to send the request "GET" of seven hundred times
your product consumed all memory resouce and karnel paniced.
The size of GET command to your product was about a couple of
thousands.

But I could not find out any problem when I gave same situation
to the Enterprise Server International Edition 3.6SP2 on
Solaris 2.6J (Sparc), the Enterprise Server 3.6SP3 on Solaris
2.6J (Sparc) , the iPlanet Web Server, Enterprise Edition 4.0SP3
on Solaris 2.6J (Sparc) and the Apache httpd on Redhat6.1J.

For example, Apache is able to refuse the attack of DoS, when
the maximam number of fork() is defined propery.
Does this product do nothing?

I have posted this problem to Netscape by input-form on the web.
BUT I have no response from them for three weeks.
So I have sent to the staff of Netscape who use his influence
for me by Feb 18th. BUT he reply me NOTHING yet. They ignore me?

My original message to Netscape is follows.
(I typed and chose on the Web of Netscape.)
> ------------------------------
> From: ohki@lac.co.jp
> Subject: Denial of Service for the iPlanet Web Server, Enterprise Edition 4.1
>
> Submitter name: Eiji Ohki
> Submitter email address: ohki@lac.co.jp
> Acknowledgement checkbox: on
> Product: Enterprise Server
> Version: 4.1
> Operating system: Unix: Sun Solaris 2.x
> OS version: Linux 2.2.5(Redhat6.1J;Kernel 2.2.12
> Issue summary: Denial of service effected to Enterprise Server4.1.
>
> Issue details:
> Dear Sir/Madame,
>
> Hello,
>
> I could find out the denial of service effected to iPlanet
> Web Server, Enterprise Edition 4.1 on Linux 2.2.5(Redhat6.1J;
> Kernel 2.2.12).
>
> When I tried to send the request "GET" of seven hundred times
> your product consumed all memory resouce and karnel paniced.
> The size of GET command to your product was about a couple of
> thousands.
>
> But I could not find out any problem when I gave same situation
> to the Enterprise Server International Edition 3.6SP2 on
> Solaris 2.6J (Sparc), the Enterprise Server 3.6SP3 on Solaris
> 2.6J (Sparc) , the iPlanet Web Server, Enterprise Edition 4.0SP3
> on Solaris 2.6J (Sparc) and the Apache httpd on Redhat6.1J.
>
> Do you have any solutions about this problem ?
> For example, Apache is able to refuse the attack of DoS, when
> the maximam number of fork() is defined propery.
> By the way, I saw this problem is very informative.
> So can I post this isssue to Bugtraq and Bugtraq-JP?
>
>
>
> Severity: Server computer hangs/crashes
> Can reproduce?: Yes, Always
>
> Additional computer info:
> CPU:Celeron333MHz
> HD:4.3GB(total), 44% in use.
> Swap:150MB
> No XWindow
>
> ps.This input form do not have selection of OS "Linux".
> So I chose "Unix:Sun Solaris2.x" unwillingly.
> I think I have to choose "Linux: Redhat" or "PC-Unix: Linux".
>
>
> This form was submitted from https://help.netscape.com/forms/bug-server.html
> with Mozilla/4.7 [ja] (WinNT; I).
> ------------------------------


Regards,
Eiji Ohki


E I J I O H K I
ohki@lac.co.jp
https://www.lac.co.jp/security/


Login or Register to add favorites

File Archive:

November 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Nov 1st
    30 Files
  • 2
    Nov 2nd
    0 Files
  • 3
    Nov 3rd
    0 Files
  • 4
    Nov 4th
    12 Files
  • 5
    Nov 5th
    44 Files
  • 6
    Nov 6th
    18 Files
  • 7
    Nov 7th
    9 Files
  • 8
    Nov 8th
    8 Files
  • 9
    Nov 9th
    3 Files
  • 10
    Nov 10th
    0 Files
  • 11
    Nov 11th
    14 Files
  • 12
    Nov 12th
    0 Files
  • 13
    Nov 13th
    0 Files
  • 14
    Nov 14th
    0 Files
  • 15
    Nov 15th
    0 Files
  • 16
    Nov 16th
    0 Files
  • 17
    Nov 17th
    0 Files
  • 18
    Nov 18th
    0 Files
  • 19
    Nov 19th
    0 Files
  • 20
    Nov 20th
    0 Files
  • 21
    Nov 21st
    0 Files
  • 22
    Nov 22nd
    0 Files
  • 23
    Nov 23rd
    0 Files
  • 24
    Nov 24th
    0 Files
  • 25
    Nov 25th
    0 Files
  • 26
    Nov 26th
    0 Files
  • 27
    Nov 27th
    0 Files
  • 28
    Nov 28th
    0 Files
  • 29
    Nov 29th
    0 Files
  • 30
    Nov 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2024 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close