Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

bugtraq logo Bugtraq mailing list archives

CommuniGatePro 3.1 for NT DoS
From: n-miwa () LAC CO JP (Nobuo Miwa)
Date: Fri, 3 Dec 1999 12:26:07 -0500

Hi,

I reported a buffer overflow vulnerability on CommuniGatePro 3.1 for NT
to support () stalker com  And they fixed immediately.

It's simple buffer overflow, actually.

  1. connect to port 8010 (http configuration from remote browser)
  2. send 70000 of 'a' + "\r\n"
  3. connect to any port(25,8010,..) just like "telnet server 25"
  4. Access violation

Their reply is following..
  Fixed in the current 3.2 betas. Please install either the 3.2b5 or the
  3.2b7 that should be out by Monday - 3.2b6 had many internal changes
  and a couple of bugs have been found there.

<Nobuo Miwa> n-miwa () lac co jp  ( @ @ ) http://www.lac.co.jp/security/
--------------------------o00o--(. .)--o00o--------------------------

  By Date           By Thread  

Current thread:
  • CommuniGatePro 3.1 for NT DoS Nobuo Miwa (Dec 03)
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]