[9879] in bugtraq
Re: Linux Blind TCP Spoofing
daemon@ATHENA.MIT.EDU (John D. Hardin)
Wed Mar 10 16:04:43 1999
Date: Tue, 9 Mar 1999 18:53:38 -0800
Reply-To: "John D. Hardin" <jhardin@WOLFENET.COM>
From: "John D. Hardin" <jhardin@WOLFENET.COM>
X-To: Security Research Labs <seclabs@NAI.COM>
To: BUGTRAQ@NETSPACE.ORG
In-Reply-To: <6BC5E520D4A4D11184A200A0C99D8FBE015C93C8@ca-exchange1.nai.com>
On Tue, 9 Mar 1999, Security Research Labs wrote:
> VULNERABLE HOSTS
>
> This problem is present in Linux kernels up to and including 2.0.35.
> Any distribution containing a kernel revision less than this is
> vulnerable.
{snip}
> RESOLUTION
>
> It is recommended that kernels below version 2.0.36 be upgraded to
> eliminate this vulnerability.
This implies but does not explicitly state that 2.0.36+ kernels are
not vulnerable. Is this the case?
--
John Hardin KA7OHZ jhardin@wolfenet.com
pgpk -a finger://gonzo.wolfenet.com/jhardin PGP key ID: 0x41EA94F5
PGP key fingerprint: A3 0C 5B C2 EF 0D 2C E5 E9 BF C8 33 A7 A9 CE 76
-----------------------------------------------------------------------
If you spend any time administering Windows NT, you're far too
familiar with the Blue Screen of Death (BSOD) ...
- "MSDN Flash" email newsletter, 2/8/1999
-----------------------------------------------------------------------
72 days until Star Wars episode I
