Signature Detail

Short Name	DOS:IP:CHARGEN-BOMB
Severity	Medium
Recommended	No
Category	DOS
Keywords	UDP CHARGEN Bomb
Release Date	2003/04/22
Update Number	1213
Supported Platforms	idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+

DOS: UDP CHARGEN Bomb

This signature detects attempts to flood a UDP port with ECHO and CHARGEN packets. Attackers can create a UDP "packet storm" by connecting a host ECHO service to a local or remote CHARGEN service, causing a denial of service (DoS).

Extended Description

This signature detects attempts to launch a denial of service attack by connecting the Echo service on one server to a local or remote Chargen service on another.

References

CVE: CVE-1999-0103
URL: http://www.cert.org/advisories/CA-1996-01.html

Signature Detail

Short Name

Severity

Recommended

Category

Keywords

Release Date

Update Number

Supported Platforms

DOS: UDP CHARGEN Bomb

Extended Description

References