BORGChat Service Port 7551 denial of service

Vulnerability

BORGChat version 1.0.0 Build 438 exposes a TCP service on port 7551 that is vulnerable to a denial-of-service condition. By establishing numerous socket connections and sending arbitrary data, an attacker can exhaust server resources and crash the service. The vulnerability is classified as problematic and is reachable remotely without authentication. Affected version: BORGChat 1.0.0 Build 438 [1].

Exploitation

No authentication or prior access is required. An attacker on the network sends a large number of TCP connection requests to the target server on port 7551. The public exploit script repeatedly connects and sends the string "Denial of Service" until the server becomes unresponsive and stops accepting connections, effectively causing a denial of service. The exploit script targets the server IP and port 7551 [1].

Impact

Successful exploitation results in a denial of service (DoS) condition — the BORGChat server becomes unavailable to legitimate users. The resource exhaustion does not lead to data corruption, privilege escalation, or information disclosure. The service can be restored by restarting the server process [1].

Mitigation

No official patch or vendor notification has been reported. Users of BORGChat 1.0.0 Build 438 should restrict network access to port 7551 (e.g., via firewall rules) to trusted hosts only, or consider shutting down the service if not required. As of the publication date (January 2024), no fixed version is available [1].