Chargen service running

Description

A chargen service is running on this host. The chargen service was intended for testing and measurement purposes and may listen on both TCP and UDP protocols. Upon opening a TCP connection, the server starts sending arbitrary characters to the connecting host and continues until the hosts closes the connection. In the UDP version of the protocol, the server sends a UDP packet containing a random number (between 0 and 512) of characters every time it receives a UDP packet from the connecting host. Any data received by the server is thrown away.
The chargen service can be spoofed into sending data from one service on one computer to another service on another computer. This action causes an infinite loop and creates a denial of service attack.

Remediation

It is recommended to disable this service.

References
Severity
Classification
Tags
  • Configuration  Denial Of Service  Needless Service  Network Alert