[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Linux 2.2.x ISN vulnerability

Subject: Re: Linux 2.2.x ISN vulnerability
From: richard christian <nospam [at] helicon2.f9.co.uk>
Date: Sep 30 1999 14:43:22 EDT

isnt this just the same old spoofing attack? are there really ppl on this
list who have trusted host stetups?

>
>Linux Kernel 2.2.x ISN Vulnerability
>
>Summary
>===================
>
> A weakness within the TCP stack in Linux 2.2.x kernels has been
> discovered. The vulnerability makes it possible to blind-spoof TCP
> connections.
> It's therefore possible for an attacker to initiate a TCP connection
> from an arbitrary non existing or unresponding IP source address,
> exploiting IP address based access control mechanisms.
>
> Linux 2.0.x kernels were tested against this attack and found not to
> be vulnerable in any case.
>

Start your own FREE mailing list at

&copy; 2000 Microsoft Corporation. All Rights Reserved

Prev by Date: Re: SUSE and UDMA
Next by Date: Re: Linux 2.2.x ISN vulnerability
Prev by thread: Linux 2.2.x ISN vulnerability
Next by thread: Re: Linux 2.2.x ISN vulnerability
Index(es):
- Date
- Thread