[14843] in bugtraq
Ipchains!
daemon@ATHENA.MIT.EDU (Dimuthu Parussalla)
Mon May 8 16:46:28 2000
Mime-Version: 1.0
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: 7bit
Message-Id: <001301bfb889$d1e5c570$d801a8c0@dimuthu.baysidegrp.com.au>
Date: Mon, 8 May 2000 11:07:42 +1000
Reply-To: dparussalla@baysidegrp.com.au
From: Dimuthu Parussalla <dparussalla@BAYSIDEGRP.COM.AU>
X-To: BUGTRAQ@SECURITYFOCUS.COM
To: BUGTRAQ@SECURITYFOCUS.COM
Ipchains buffer overflow with debian 2.2.10 Kernel.
--------------------------------------------------
there is a buffer overflow hang in linux debian distributin kernel 2.2.10
with ipchains 1.3.8, 27-Oct-1998.
here is the explanation.
We tested with a linux running with debian above version of kernel and
ipchains. first we setup the linux box to handle IP Masquerading as follows.
ipchains -A forward -j MASQ -s 192.168.0.0/16
Then from a local workstation within the 192.168.0.0 network. We ssh to the
linux box. and did the following
$ping -f <ip.address>
And we opend a another ssh session to the linux box and did the following
$ping -l 6512121 <ip.address>
After a few minutes. Ipchains hangs and the linux server hangs..
Ipchains-patch.gz will fix the problem.
----------------------
THE UNDERTAKER -> EFNET -> REAL CRACKING
!!!REST IN PACE!!!!
