[10611] in bugtraq
Re: NetBSD Security Advisory 1999-010
daemon@ATHENA.MIT.EDU (Olaf Kirch)
Sun May 23 13:42:00 1999
Message-Id: <m10kqle-000FASC@monad.swb.de>
Date: Fri, 21 May 1999 16:59:21 +0200
Reply-To: Olaf Kirch <okir@MONAD.SWB.DE>
From: Olaf Kirch <okir@MONAD.SWB.DE>
To: BUGTRAQ@NETSPACE.ORG
In-Reply-To: Your message of "Fri, 21 May 1999 23:02:25 +1000."
<12607.927291745@eterna.com.au>
Talking of ARP, at least Linux has the problem that it blindly accepts
whatever hardware address it finds in the ARP response -- be it the
MAC broadcast address, or a multicast one. Not sure wheter other
OSs are affected.
I didn't find anything dangerous you can do with this, unless there's
some really stupid IP stack that tries to forward IP packets that were
sent to the MAC broadcast--that would indeed be network meltdown. But
I haven't seen such a stack.
I reported this to Alan a week or two ago, so I would assume that
it has been fixed in the meanwhile :)
Olaf
--
Olaf Kirch | --- o --- Nous sommes du soleil we love when we play
okir@monad.swb.de | / | \ sol.dhoop.naytheet.ah kin.ir.samse.qurax
