[19514] in bugtraq
Re: Loopback and multi-homed routing flaw in TCP/IP stack.
daemon@ATHENA.MIT.EDU (J. Bol)
Tue Mar 6 16:11:10 2001
MIME-Version: 1.0
Content-Type: multipart/signed; protocol="application/x-pkcs7-signature";
micalg=sha1; boundary="------------ms315867CB6C67C96CB8DADD2F"
Message-ID: <3AA4B61B.6446D87D@ITsec.nl>
Date: Tue, 6 Mar 2001 11:04:11 +0100
Reply-To: "J. Bol" <j.bol@ITSEC.NL>
From: "J. Bol" <j.bol@ITSEC.NL>
To: BUGTRAQ@SECURITYFOCUS.COM
This is a cryptographically signed message in MIME format.
--------------ms315867CB6C67C96CB8DADD2F
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
> 2.2 is vulnerable, but 2.4 is not. as far as i can tell, 2.4 systems
> don't even have a localhost routing entry anymore.
We've been testing with a kernel 2.2.16 victim, which is standard with
RH7.0 and an attacker with kernel 2.0.34. I can see packets comming in
from the attacker, but the kernel does not respond to these.
We also set up an attacker with kernel 2.2.16 and tried the same attack.
No packets arrive on the victim.
jeroen & christian
--------------ms315867CB6C67C96CB8DADD2F
Content-Type: application/x-pkcs7-signature; name="smime.p7s"
Content-Transfer-Encoding: base64
Content-Disposition: attachment; filename="smime.p7s"
Content-Description: S/MIME Cryptographic Signature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--------------ms315867CB6C67C96CB8DADD2F--
