ID CVE-1999-0103
Summary Echo and chargen, or other combinations of UDP services, can be used in tandem to flood the server, a.k.a. UDP bomb or UDP packet storm.
References
Vulnerable Configurations
CVSS
Base: 5.0 (as of 01-01-2004 - 00:00)
Impact:
Exploitability:
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
NONE NONE PARTIAL
metasploit via4
description Chargen is a debugging and measurement tool and a character generator service. A character generator service simply sends data without regard to the input. Chargen is susceptible to spoofing the source of transmissions as well as use in a reflection attack vector. The misuse of the testing features of the Chargen service may allow attackers to craft malicious network payloads and reflect them by spoofing the transmission source to effectively direct it to a target. This can result in traffic loops and service degradation with large amounts of network traffic.
id MSF:AUXILIARY/SCANNER/CHARGEN/CHARGEN_PROBE
last seen 2019-03-07
modified 2019-03-05
published 2013-11-23
reliability Normal
reporter Rapid7
source https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/scanner/chargen/chargen_probe.rb
title Chargen Probe Utility
nessus via4
  • NASL family Service detection
    NASL id ECHO.NASL
    description The remote host is running the 'echo' service. This service echoes any data which is sent to it. This service is unused these days, so it is strongly advised that you disable it, as it may be used by attackers to set up denial of services attacks against this host.
    last seen 2019-02-21
    modified 2018-08-10
    plugin id 10061
    published 1999-06-22
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=10061
    title Echo Service Detection
  • NASL family Service detection
    NASL id QUOTE.NASL
    description A server listens for TCP connections on TCP port 17. Once a connection is established a short message is sent out the connection (and any data received is thrown away). The service closes the connection after sending the quote. Another quote of the day service is defined as a datagram based application on UDP. A server listens for UDP datagrams on UDP port 17. When a datagram is received, an answering datagram is sent containing a quote (the data in the received datagram is ignored). An easy attack is 'pingpong' which IP spoofs a packet between two machines running qotd. This will cause them to spew characters at each other, slowing the machines down and saturating the network.
    last seen 2019-02-21
    modified 2018-08-13
    plugin id 10198
    published 1999-11-30
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=10198
    title Quote of the Day (QOTD) Service Detection
  • NASL family Denial of Service
    NASL id CHARGEN.NASL
    description When contacted, chargen responds with some random characters (something like all the characters in the alphabet in a row). When contacted via UDP, it will respond with a single UDP packet. When contacted via TCP, it will continue spewing characters until the client closes the connection. The purpose of this service was to mostly test the TCP/IP protocol by itself, to make sure that all the packets were arriving at their destination unaltered. It is unused these days, so it is suggested you disable it, as an attacker may use it to set up an attack against this host, or against a third-party host using this host as a relay. An easy attack is 'ping-pong' in which an attacker spoofs a packet between two machines running chargen. This will cause them to spew characters at each other, slowing the machines down and saturating the network.
    last seen 2019-02-21
    modified 2018-08-22
    plugin id 10043
    published 1999-11-29
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=10043
    title Chargen UDP Service Remote DoS
refmap via4
cert CA-96.01.UDP_service_denial
misc https://ics-cert.us-cert.gov/advisories/ICSMA-18-233-01
xf
  • chargen
  • chargen-patch
  • echo
Last major update 09-09-2008 - 08:33
Published 08-02-1996 - 00:00
Last modified 22-08-2018 - 14:29
Back to Top