Provided by Aanval (Snort & Syslog Intrusion Detection and Correlation Engine) www.aanval.com
--
GEN:SID | 1:291 |
Message | NNTP Cassandra Overflow |
Summary | This event is generated when an attempt is made to exploit a buffer overflow in the Cassandra NNTP service. |
Impact | Denial of Service. |
Detailed Information | The denial of service is caused by providing an unusually long login name. The rule looks for a data payload of over 512 characters. |
Affected Systems | Cassandra NNTP server v1.10 |
Attack Scenarios | The attack is done remotely and causes denial of service. |
Ease of Attack | Simple. An exploit is readily available. |
Corrective Action | Install the available security patches from your vendor. |
Additional References | Arachnids: http://www.whitehats.com/info/IDS274 CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=3DCAN-2000-0341 |
Rule References | arachnids: 274 bugtraq: 1156 cve: 2000-0341 |
--
DID:706375
--
http://www.aanval.com/