|Category:||Denial of Service|
|Summary:||Crashes an ascend router|
|Description:||It was possible to make
the remote Ascend router reboot by sending
it a UDP packet containing special data on
port 9 (discard).
An attacker may use this flaw to make your
Solution : filter the incoming UDP traffic coming
|9||tcp,udp||Discard||Discard server – this protocol is only installed on machines for test purposes. The service listening at this port (both TCP and UDP) simply discards any input.
See also: [RFC863], CVE-1999-0060
|9||tcp,udp||discard||Discard [RFC4960] [RFC4340]||IANA|
5 records found
This RFC specifies a standard for the ARPA Internet community. Hosts on the ARPA Internet that choose to implement a Discard Protocol are expected to adopt and implement this standard. A useful debugging and measurement tool is a discard service. A discard service simply throws away any data it receives. TCP Based Discard Service One discard service is defined as a connection based application on TCP. A server listens for TCP connections on TCP port 9. Once a connection is established any data received is thrown away. No response is sent. This continues until the calling user terminates the connection. UDP Based Discard Service Another discard service is defined as a datagram based application on UDP. A server listens for UDP datagrams on UDP port 9. When a datagram is received, it is thrown away. No response is sent.