涉及程序: Involved in the program:
UDP UDP
描述: Description:
Windows客户端耗尽UDP socket导致拒绝服务 Windows client UDP socket exhaustion denial of service
详细: Details:
在运行Windows 系统的计算机中,如果访问一个恶意的WEB 站点或接收到一个特殊构造的邮件,将有可能消耗掉所有的客户端UDP 套接字(socket)。 A computer running Windows system, if a malicious access the WEB site or receive a specially crafted e-mail, will likely consume all of the client UDP socket (socket). 在Windows 2000 中可能会停止DNS 解析,在Windows 98 中则有可能拒绝所有新的TCP 连接。 In Windows 2000 may stop DNS resolution in Windows 98 is likely to reject all new TCP connections.
该漏洞是由于用户应用程序在分配网络套接字(socket)时缺乏必要的限制所引起的。 The vulnerability is due to user applications in the distribution network socket (socket) the lack of the necessary restrictions caused. 放置在网站上的恶意的Java applet 可以利用这个漏洞并使受害系统拒绝服务。 Placed on the site of a malicious Java applet could exploit this vulnerability and make the victim system denial of service.
以下代码仅仅用来测试和研究这个漏洞,如果您将其用于不正当的途径请后果自负 The following code is used only to test and research this loophole, if you use it for improper way to please your peril
Georgi Guninski给出如下Java applet演示代码: Georgi Guninski Java applet demo code are given as follows:
for(i=0;i
try { DatagramSocket d = new DatagramSocket();v.addElement(d);} try {DatagramSocket d = new DatagramSocket (); v.addElement (d);}
catch (Exception e) {System.out.println("Exhausted, i="+i);} catch (Exception e) {System.out.println ("Exhausted, i =" + i);}
} }
可参考其演示页面: http://www.guninski.com/winudpdos.html Refer to the demo page: http://www.guninski.com/winudpdos.html
受影响的系统: The affected system:
Microsoft Windows 98 Microsoft Windows 98
Microsoft Windows NT 2000 Microsoft Windows NT 2000
解决方案: Solution:
建议您在浏览器中禁止使用java applet。 We recommend that you use is prohibited in the browser java applet.
Tidak ada komentar:
Posting Komentar