2002103

	rlogin password overflow
advICE :Intrusions : 2002103

FAQ

Oh my gosh, I'm being HACKED!!!

How do I report the hacker to my ISP?

I'm seeing lots of attacks, is this normal?

Summary
An attempt to break in using a buffer overflow against the password field.
Details
A very long user name, password, or file name often signals an intentional effort to overflow a buffer on a server. By constructing the data in a particular way, the intruder may be able to execute his own code on the attacked system.

more information

advICE: Buffer overflows: More about this general class of attacks, which is the root cause of many attacks on the Internet.
rlogin exploits

parametric information

length The length of the password; if it is longer than a few hundred characters, then it may be a buffer overflow attempt.

configuration for this item

login.maxpass 100 The maximum length of a password.

 
Version appeared:

rlogin password overflow