Juniper Networks
Solutions
Products & Services
Company
Partners
Support
Education

Signature Detail

Security Intelligence Center
Signatures
Print

Short Name

 SCAN:CYBERCOP:UDP-BOMB

Severity

 Low

Recommended

 No

Category

 SCAN

Keywords

 Cybercop UDP Bomb

Release Date

 2003/04/22

Update Number

 1213

Supported Platforms

 idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+

SCAN: Cybercop UDP Bomb


This signature detects attempts to scan the system using CyberCop Scanner. Attackers can be attempting to determine if the system is vulnerable to a UDP bomb denial-of-service (DoS) attack (a UDP port is flooded with ECHO and CHARGEN packets by connecting a host ECHO service to a local or remote CHARGEN service).

Extended Description

CyberCop Scanner can be used for a UDP Bomb attack. This signature detects such an attempt. A successful attack creates a denial of service condition.

References

  • CVE: CVE-1999-0103
  • URL: http://www.windowsitpro.com/WindowsSecurity/Article/ArticleID/9203/9203.html

Site Map
RSS Feeds
Careers
Accessibility
Feedback
Privacy Policy
Legal Notices
Copyright © 1999-2010 Juniper Networks, Inc. All rights reserved.
Help
|
My Account
|
Log Out