December 11, 2003

DoS Web Service with a Single Packet

Just saw on Bugtraq that you can send a specially crafted SOAP packet that has a modified DTD in it to a Web Service and the XML parser will cause the CPU load to remain at 100% for as long as the process keeps running. Another effect is that memory (hundreds of megabytes) could not be freed, even after the CPU came down from the high load. In some cases, the parser returns an out of memory error after some time.

Nothing like a single packet to DoS your machine. *sigh*

There is a fix for it. Microsoft has released an update to the .NET Framework that fixes this. It is documented in KnowledgeBase article 826231, but this article isn't actually online yet.

Posted by SilverStr at December 11, 2003 12:11 PM | TrackBack
Comments

Interesting, Yohimbe and his company does firewalling for soap packets. Wonder if this would apply to what they are doing?

Posted by: Arcterex at December 11, 2003 01:20 PM

There's more Web Services implementations then .NET!!

Posted by: Wim at December 11, 2003 05:15 PM

yes, but this bug only applies to .NET!

Posted by: Scott at December 11, 2003 10:30 PM