Spynet multiple connections denial of service
| spynet-connection-dos (6509) |  Medium Risk |
Description:
Spynet Chat is vulnerable to denial of service attack. A remote attacker can send 100 connection requests and a message using the chat client at the same time to cause the Spynet Chat server to crash. The server must be restarted to regain normal functionality.
Consequences:
Denial of Service
Remedy:
No remedy available as of July 9, 2011.
References:
- BugTraq Mailing List, Mon May 07 2001 - 19:36:05 CDT: Advisory for Spynet Chat.
- BID-2701: SpyNet Chat Server Multiple Connection Denial Of Service Vulnerability
- CVE-2001-0581: Spytech Spynet Chat Server 6.5 allows a remote attacker to create a denial of service (crash) via a large number of connections to port 6387.
Platforms Affected:
- Spytech Software and Design Spynet Chat 6.5 and prior
Reported:
May 08, 2001
The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (IBM Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.
For corrections or additions please email xforce@iss.net