Telnet: GAMSoft Telsrv DoS
This signature detects attempts to exploit a known flaw in GAMSoft Telsrv. A successful exploit would result in a Denial of Service (DoS).
Extended Description
GAMSoft Telsrv telnet server is prone to a trivial denial-of-service attack. If a malicious user were to connect to port 23 and supply a username of approximately 4550 characters, the telnet application would crash. Restarting the service is required to regain normal functionality. In some cases, Telsrv will return an error message that contains a valid username and password in plain-text format. This can be used to gain unauthorized access to the telnet server.
Affected Products
Gamsoft telsrv
References
BugTraq: 1478
CVE: CVE-2015-0014
URL: http://cdn.simtel.net/pub/simtelnet/win95/inetmisc/telsrv15.zip
Short Name
TELNET:DOS:GAMSOFT
Severity
Minor
Recommended
False
Recommended Action
None
Category
TELNET
Keywords
CVE-2000-0665 CVE-2015-0014 DoS GAMSoft Telsrv bid:1478
Release Date
01/19/2012
Supported Platforms
srx-branch-19.3
vsrx3bsd-19.2
srx-19.4
vsrx3bsd-19.4
srx-branch-19.4
vsrx-19.4
vsrx-19.2
srx-19.3
srx-branch-12.3
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx-12.3
vmx-19.3
srx-12.3
Sigpack Version
3336
False Positive
Unknown
Vendors
Gamsoft
CVSS Score
10.0
5.0