Bugtraq mailing list archives
Re: Three possible DoS attacks against some IOS versions.
From: Felix Lindner <felix.lindner () nruns com>
Date: Sat, 08 Jun 2002 11:21:40 +0200
Sharad Ahlawat wrote:
an excerpt form RFC 2281 - Cisco HSRP 7. Security Considerations
[SNIP]
It is difficult to subvert the protocol from outside the LAN as most routers will not forward packets addressed to the all-routers multicast address (224.0.0.2).
This does not prevent remote attacks because Cisco devices do not validate the destination address of a HSRP packet. Unicast packets are accepted, which can be tested using the hrsp tool at http://www.phenoelit.de/irpas/ Regards /F
Current thread:
- Three possible DoS attacks against some IOS versions. Andrew Vladimirov (Jun 05)
- Re: Three possible DoS attacks against some IOS versions. Sharad Ahlawat (Jun 07)
- Re: Three possible DoS attacks against some IOS versions. Felix Lindner (Jun 10)
- Re: Three possible DoS attacks against some IOS versions. Sharad Ahlawat (Jun 12)
- Re: Three possible DoS attacks against some IOS versions. Felix Lindner (Jun 10)
- <Possible follow-ups>
- Re: Three possible DoS attacks against some IOS versions. Big Poop (Jun 10)
- Re: Three possible DoS attacks against some IOS versions. Shane Gibson (Jun 11)
- Re: Three possible DoS attacks against some IOS versions. Sharad Ahlawat (Jun 07)