Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Bugtraq
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

3Com's TippingPoint Denial of Service

from [mike20061005] Network Security [Permanent Link]
Subject: 3Com's TippingPoint Denial of Service
Date: Tue, 24 Apr 2007 23:24:34 +0200 (SAST) 
Vulnerability:       Denial of Service
Affected Product:    3Com's TippingPoint IPS
Affected Versions:   All

Author:              Corroded_Lunchmeats_X



Issue:
======

TippingPoint IPS is prone to DoS when a sequence of crafted packets are
destined for port 80.



Details:
========

When quickly flooded with packets destined for port 80, and an incrementing
source port this causes the software to consume a huge amount of CPU time,
due to a badly written loop, causing the device to stop responding.



Credits:
========

The Kinders Kricket Krew, Aunty_Richard, The dinosaurs who died in the
explosion.



Disclaimer:
===========

This  document and all the information it contains are provided "as is",
for educational purposes only, without warranty  of  any  kind,  whether
express or implied.

The  authors reserve the right not to be responsible for the topicality,
correctness, completeness or quality of  the  information   provided  in
this  document.  Liability  claims regarding damage caused by the use of
any information provided, including any kind  of  information  which  is
incomplete or incorrect, will therefore be rejected.



-------------------------------------------
South Africas premier free email service - www.webmail.co.za 
------------------------------------------------------------------
For super low premiums, click here http://www.webmail.co.za/dd.pwm
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  [MajorSecurity Advisory #46]Plogger - Session fixation Issue, admin
Next by Date:  [Full-disclosure] ZDI-07-022: CA BrightStor ArcServe Media Server Multiple Buffer Overflow Vulnerabilities, zdi-disclosures
Previous by Thread:  [MajorSecurity Advisory #46]Plogger - Session fixation Issue, admin
Next by Thread:  Re: 3Com's TippingPoint Denial of Service, Simple Nomad
Indexes:  [Date] [Thread] [Top] [All Lists]