WorldClient Server v2.0.0.0 Subject to DoS
Reported November 25, 1999 by
USSRLABS
VERSIONS AFFECTED
  • WorldClient Server v2.0.0.0

DESCRIPTION

USSRLabs discovered serveral denial of service conditions in Deerfield.com"s WorldClient Server v2.0.0.0. The problems are the result of buffer overflow conditions within the program code.

DEMONSTRATION

The problem affects the WorldClient service on port 2000. By sending a very long URL to the service listening on the port the service can be made to crash, thereby denying service to valid users.

VENDOR RESPONSE

UssrLabs notified Deefield.com about this problem, however no response is unknown at this time.

CREDITS
Discovered by USSRLABS