Network Security: Detailed info on Re: ICMP Vulnerabilities

Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.

Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.

Network Security Vuln-Dev

[Top] [All Lists]

Re: ICMP Vulnerabilities

from [Joachim Schipper] Network Security

[Permanent Link]

Subject:	Re: ICMP Vulnerabilities
Date:	Sat, 9 Jul 2005 00:00:01 +0200

On Thu, Jul 07, 2005 at 05:02:40PM -0700, Dragos Ruiu wrote:

On Thursday, 7 July 2005 J. Oquendo wrote:

This isn't news news, I've been tinkering with something along
these lines since 1999


Well you may have known about the problem, but you didn't fix it.
The news isn't the problem, it's the FIX. The fix which people haven't
applied to their OS distributions yet.


On this note, does anyone know to what extent operating systems other
than OpenBSD are affected? The article lists FreeBSD and Linux as having
(partially) solved the issues; are the issues not named still
outstanding? Workaround? Patch?

Is Windows, once again, vulnerable? Cisco systems (seems to be the
case)?

                Joachim

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
ICMP vulnerabilities, Theo de Raadt Re: ICMP vulnerabilities, J. Oquendo Re: ICMP vulnerabilities, Bob Beck Re: ICMP Vulnerabilities, Dragos Ruiu Re: ICMP Vulnerabilities, Joachim Schipper <=

Previous by Date:	RE: [VOIPSEC] VoIP-Phones: Weakness in proccessing SIP-Notify-Messages, Walton, John Michael (John)
Next by Date:	Re: A comment on using CPU resources, Jeroen van Rijn
Previous by Thread:	Re: ICMP Vulnerabilities, Dragos Ruiu
Next by Thread:	Vulnerability in Whatpulse.Org profiles allows XSS and session hijacking, rift13
Indexes:	[Date] [Thread] [Top] [All Lists]