[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Linux 2.2.x ISN vulnerability



isnt this just the same old spoofing attack? are there really ppl on this
list who have trusted host stetups?

>
>Linux Kernel 2.2.x ISN Vulnerability
>
>Summary
>===================
>
> A weakness within the TCP stack in Linux 2.2.x kernels has been
> discovered. The vulnerability makes it possible to blind-spoof TCP
> connections.
> It's therefore possible for an attacker to initiate a TCP connection
> from an arbitrary non existing or unresponding IP source address,
> exploiting IP address based access control mechanisms.
>
> Linux 2.0.x kernels were tested against this attack and found not to
> be vulnerable in any case.
>

Start your own FREE mailing list at

© 2000 Microsoft Corporation. All Rights Reserved