Preface: Telnet password overflowLogo -Internet Security Systems

Telnet password overflow
advICE :Intrusions : 2000903
 FAQ
Oh my gosh, I'm being HACKED!!!
How do I report the hacker to my ISP?
I'm seeing lots of attacks, is this normal?
Summary

An attempt to break in using buffer overflow against the password field.

Details

A very long user name, password, or file name often signals an intentional effort to overflow a buffer on a server. By constructing the data in a particular way, the intruder may be able to execute his own code on the attacked system.

 more information
advICE: Buffer overflows  
More about this general class of attacks, which is the root cause of many attacks on the Internet.  
Telnet exploits  
Other exploits against the Telnet service.  
BugtraqID: 704   Cisco IOS/700 Router Password Buffer Overflow
Cisco 7xx routers running old IOS can be crashed by connecting via Telnet and giving an abnormally long password.  

 parametric information
lengthThe length of the password; if it is longer than a few hundred characters, then it may be a buffer overflow attempt.

 configuration for this item
login.maxpass100The maximum length of a password.

 
Version appeared:
Privacy Policy |  Copyright Info