Microsoft Dynamics GP magic number denial of service (DPS_Magic_Number_DoS)

About this signature or vulnerability

RealSecure Network, RealSecure Server Sensor, Proventia Network IDS, Proventia Desktop, Proventia Network IPS, Proventia-G 1.1 and earlier, Proventia Server IPS for Microsoft Windows technology, BlackICE PC Protection, BlackICE Server Protection, Proventia Network MFS, Proventia Server IPS for Linux technology, RealSecure Desktop:

A DPS message with an invalid magic number was encountered.

RealSecure Network, RealSecure Server Sensor, Proventia Network IDS, Proventia Desktop, Proventia Network IPS, Proventia-G 1.1 and earlier, Proventia Server IPS for Microsoft Windows technology, BlackICE PC Protection, BlackICE Server Protection, Proventia Network MFS, Proventia Server IPS for Linux technology, RealSecure Desktop: This signature fires on network traffic that will affect a vulnerable server. Unfortunately, the data used to perform the attack is malformed in such a way that it may not be positively identified. It is necessary to correlate these events with vulnerability information to positively identify malicious traffic.

Default risk level

 Low

Sensors that have this signature

RealSecure Network: XPU 24.49, RealSecure Server Sensor: XPU 24.49, Proventia Network IDS: XPU 24.49, Proventia Desktop: 1890, Proventia Network IPS: XPU 1.88, Proventia-G 1.1 and earlier: XPU 24.49, Proventia Server IPS for Microsoft Windows technology: 1.0.914.1890, BlackICE PC Protection: 3.6cpu, BlackICE Server Protection: 3.6.cpu, Proventia Network MFS: XPU 1.88, Proventia Server IPS for Linux technology: 1.88, RealSecure Desktop: epu

Systems affected

Microsoft Business Solutions Great Plains: 7.5, Microsoft Business Solutions Dynamics: 6.0, Microsoft Business Solutions Dynamics: 7.0, Microsoft Dynamics GP: 9.0

Type

Denial of Service

Vulnerability description

How to remove this vulnerability

References