Details
Description
The wchp/wchc four letter words can be exploited in a DOS attack on the ZK client port - typically 2181. The following POC attack was recently published on the web:
https://vulners.com/exploitdb/EDB-ID:41277
The most straightforward way to block this attack is to not allow access to the client port to non-trusted clients - i.e. firewall the ZooKeeper service and only allow access to trusted applications using it for coordination.
Attachments
Attachments
Issue Links
- is related to
-
ZOOKEEPER-2726 Patch for ZOOKEEPER-2693 introduces potential race condition
- Closed
- relates to
-
ZOOKEEPER-2713 Create CVE text for ZOOKEEPER-2693 "DOS attack on wchp/wchc four letter words (4lw)"
- Resolved
- links to