Contact us

Solutions

Featured solutions AI Campus and branch Data center WAN Security Service provider Cloud operator Industries

Services

Services

Take me to HPE.com

DDOS: Mstream Handler To Client on TCP/15104

This signature detects the command string ">" in a TCP packet to port 15104 with the ACK and PUSH flags set. This can indicate that an Mstream handler is attempting to communicate with an Mstream client. Attackers can use Mstream, a denial-of-service (DoS) attack tool, to flood IP addresses with TCP ACK packets from forged source addresses.

References

CVE: CVE-2000-0138

URL: http://staff.washington.edu/dittrich/misc/mstream.analysis.txt

Short Name

SCAN:MISC:MSTREAM-REP-15104

Severity

Info

Recommended

False

Recommended Action

None

Category

SCAN

Keywords

CVE-2000-0138 Client Handler Mstream TCP/15104 To on

Release Date

04/22/2003

Supported Platforms

srx-branch-12.3

srx-19.3

srx-branch-19.3

vsrx3bsd-19.2

srx-branch-19.4

vsrx-19.4

mx-12.3

mx-19.4

vmx-19.4

mx-19.3

vsrx3bsd-19.4

srx-19.4

vsrx-12.3

vmx-19.3

vsrx-19.2

srx-12.3

Sigpack Version

3783

Port

TCP/15104

False Positive

Rarely

CVSS Score

5.0