GEN:SID | 1:1538 |
Message | NNTP AUTHINFO USER overflow attempt |
Summary | This event is generated when an attempt is made to exploit a known vulnerability in the Cassandra NNTP server.
|
Impact | Denial of Service (DoS)
|
Detailed Information | A vulnerability exists in the Cassandra NNTP server for Windows such that an unusually long login name will cause a DoS condition to occur. This is due to an unchecked buffer in the code that handles login attempts. A login name that exceeds 10 000 characters will trigger the overflow.
|
Affected Systems | Atrium Software Cassandra NNTP Server 1.10
|
Attack Scenarios | An attacker needs to supply a login username containing 10 000 or more characters to cause the DoS.
|
Ease of Attack | Simple. No exploit software is required.
|
Corrective Action | Upgrade to the latest non-affected version of the software.
|
Additional References | Bugtraq: http://www.securityfocus.com/bid/1156
CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2000-0341
|
Rule References | arachnids: 274
bugtraq: 1156
cve: 2000-0341
|