New TCP/IP DoS
Hi @all
Do you sead the news concerning the new TCP/IP flaw which was discovered by Outpost 24?
http://www.linuxworld.com.au/index.php/id;650063178
I'm really wondering what they found I know that there are some problems within the TCP/IP suite (including ICMP) because this stuff is "very" old What do you think about that?
I look forward to the T2´08 Information Security Conference, it seems that they will present there some more details.
h0rbin
Do you sead the news concerning the new TCP/IP flaw which was discovered by Outpost 24?
http://www.linuxworld.com.au/index.php/id;650063178
I'm really wondering what they found I know that there are some problems within the TCP/IP suite (including ICMP) because this stuff is "very" old What do you think about that?
I look forward to the T2´08 Information Security Conference, it seems that they will present there some more details.
h0rbin
Replies to This Discussion
-
Permalink Reply by Creegan 11.9 on -
wow, i must admit that after 3 years i think is ABOUT time to make it public.
interesting a DoS attack with just 10 packages.
Makes a botnet pretty much unnecessary.
Funny the comment 'bout the IPv6 making the issue bigger.
Let's see how things go, i really want to know some more details about the bug, so if any of you finds more information please share it here.
-
Permalink Reply by h0rbin on -
As this attack should only use about 10 packets, it can be really very dangerous. Also interesting is that this attacks the TCP/IP stack and you can forget your security like firewalls or intrusion prevention systems.
As i read the comment about IPv6 i just was surpised. But if that is really the case, i assume that this TCP/IP flaw is within the header address fields. Propably the stack has problems with special crafted values in there. Just an idea from my side.
Is there anyone visiting this security conference in finland?
© 2009 Created by pdp on Ning. Create a Ning Network!
