[3618] in WWW Security List Archive
Re: "ping o' death"
daemon@ATHENA.MIT.EDU (Brian Harvell)
Sat Nov 23 18:17:05 1996
Date: Sat, 23 Nov 1996 14:44:20 -0500 (EST)
From: Brian Harvell <harvell@inet.net>
To: Robert P Cunningham <bob@lava.net>
cc: www-security@ns2.rutgers.edu
In-Reply-To: <m0vR3KG-00163kC@malasada.lava.net>
Errors-To: owner-www-security@ns2.rutgers.edu
>
> There hasn't been a CERT/CIAC bulletin on it yet, but the media have
> started to pick up the story.
>
> If true, Web servers could be popular targets.
>
> It's a new this new denial-of-service attack (based upon an IP-level
> packet reassembly bug in a variety of different operating systems)
> which is apparently capable of crashing or at least rebooting many
> different types of machines.
>
>
this has been out for weeks, Lots of vendors allready have patches for it.
I know ibm, hp and any of the linux, freebsd types have it.
Brian
Brian Harvell harvell@iNet.net http://www.iNet.net/~harvell
echo '[q]sa[ln0=aln256%Pln256/snlbx]sb3135071790101768542287578439snlbxq'|dc
