BSD系统的TELNETD存在拒绝服务攻击发布时间:2000-11-17 更新时间:2000-11-17 严重程度:中 威胁程度:远程拒绝服务 错误类型:设计错误 利用方式:物理接触 受影响系统 FreeBSD FreeBSD 4.1.1-STABLE详细描述 BSD系统中的TELNETD存在拒绝服务攻击可以导致恶意攻击者对主机实行拒绝服务 攻击。TELNET的TERMCAP变量是client-server协商时告诉TELNETD搜索文件系统中那些包含termcap条目的文件。一个远程客户端可以通过这个变量让TELNETD来搜索和读取文件系统上任意位置的文件,并I/O资源,由于这个操作在任何验证之前操作, 并且TELNETD由INETD 派生,许多TLENETD进程可以通过攻击者每搜索和读取文件来 产生,这样可以导致消耗系统资源。 测试代码 尚无 解决方案 FreeBSD FreeBSD 4.1.1-STABLE: FreeBSD patch telnetd.patch ftp://ftp.freebsd.org/pub/FreeBSD/CERT/patches/SA-00:69/telnetd.patch # cd /usr/src/libexec/telnetd # patch -p < /path/to/patch_or_advisory # make depend && make all install FreeBSD FreeBSD 4.1.1: FreeBSD patch telnetd.patch ftp://ftp.freebsd.org/pub/FreeBSD/CERT/patches/SA-00:69/telnetd.patch # cd /usr/src/libexec/telnetd # patch -p < /path/to/patch_or_advisory # make depend && make all install FreeBSD FreeBSD 4.1: FreeBSD patch telnetd.patch ftp://ftp.freebsd.org/pub/FreeBSD/CERT/patches/SA-00:69/telnetd.patch # cd /usr/src/libexec/telnetd # patch -p < /path/to/patch_or_advisory # make depend && make all install FreeBSD FreeBSD 4.0 alpha: FreeBSD patch telnetd.patch ftp://ftp.freebsd.org/pub/FreeBSD/CERT/patches/SA-00:69/telnetd.patch # cd /usr/src/libexec/telnetd # patch -p < /path/to/patch_or_advisory # make depend && make all install FreeBSD FreeBSD 4.0: FreeBSD patch telnetd.patch ftp://ftp.freebsd.org/pub/FreeBSD/CERT/patches/SA-00:69/telnetd.patch # cd /usr/src/libexec/telnetd # patch -p < /path/to/patch_or_advisory # make depend && make all install FreeBSD FreeBSD 3.5: FreeBSD patch telnetd.patch ftp://ftp.freebsd.org/pub/FreeBSD/CERT/patches/SA-00:69/telnetd.patch # cd /usr/src/libexec/telnetd # patch -p < /path/to/patch_or_advisory # make depend && make all install FreeBSD FreeBSD 3.4: FreeBSD patch telnetd.patch ftp://ftp.freebsd.org/pub/FreeBSD/CERT/patches/SA-00:69/telnetd.patch # cd /usr/src/libexec/telnetd # patch -p < /path/to/patch_or_advisory # make depend && make all install FreeBSD FreeBSD 3.3: FreeBSD patch telnetd.patch ftp://ftp.freebsd.org/pub/FreeBSD/CERT/patches/SA-00:69/telnetd.patch # cd /usr/src/libexec/telnetd # patch -p < /path/to/patch_or_advisory # make depend && make all install FreeBSD FreeBSD 3.2: FreeBSD patch telnetd.patch ftp://ftp.freebsd.org/pub/FreeBSD/CERT/patches/SA-00:69/telnetd.patch # cd /usr/src/libexec/telnetd # patch -p < /path/to/patch_or_advisory # make depend && make all install FreeBSD FreeBSD 3.1: FreeBSD patch telnetd.patch ftp://ftp.freebsd.org/pub/FreeBSD/CERT/patches/SA-00:69/telnetd.patch # cd /usr/src/libexec/telnetd # patch -p < /path/to/patch_or_advisory # make depend && make all install FreeBSD FreeBSD 3.0: FreeBSD patch telnetd.patch ftp://ftp.freebsd.org/pub/FreeBSD/CERT/patches/SA-00:69/telnetd.patch # cd /usr/src/libexec/telnetd # patch -p < /path/to/patch_or_advisory # make depend && make all install 相关信息 |
