Novell BorderManager Port 2000 Telnet DoS

This script is Copyright (C) 2000-2013 Tenable Network Security, Inc.


Synopsis :

The remote service is vulnerable to a denial of service.

Description :

The port 2000 is open, and Novell BorderManager
*might* be listening on it.

There is a denial of service attack that allows
an intruder to make a Novell BorderManager 3.5 slowly
die.

If you see an error message on this computer telling
you 'Short Term Memory Allocator is out of Memory'
then you are vulnerable to this attack.

An attacker may use this flaw to prevent this
service from doing its job and to prevent the
user of this station to work on it.

*** If there is no error message whatsoever on this
*** computer, then this is likely a false positive.

Solution :

Contact Novell and ask for a patch or filter incoming TCP connections to port 2000.

Risk factor :

Medium / CVSS Base Score : 5.0
(CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P)

Family: Firewalls

Nessus Plugin ID: 10163 ()

Bugtraq ID:

CVE ID: CVE-2000-0152