Full Disclosure mailing list archives
Re: DOS all platforms
From: "Chris Brown" <Chris () get-tuf com>
Date: Wed, 21 Jan 2004 19:01:45 -0800
-----Original Message----- From: Chris Brown Sent: 21 January 2004 18:57 To: Lee Subject: RE: [Full-disclosure] DOS all platforms POC has been sent to CERT but they have yet to release it. I am not trying to be clever but how does your Firewall connect to the Internet if not through a router? The thing to look at here is that this will not be a DOS directed at "you/your company" but at the Internet in general, if this tool can take out an entire class C block then you are screwed no matter what firewall/router you are using. -----Original Message----- From: Lee Sent: 21 January 2004 10:50 To: Chris Brown Subject: Re: [Full-disclosure] DOS all platforms Chris my router wont be the first point of contact for people attaching to my network, my firewall box is, I read the post and see that cert havent answered in 50 days and could find a proof of concept, were you more successful? Regards ----- Original Message ----- From: "Chris Brown" To: "Lee" Sent: Thursday, January 22, 2004 2:38 AM Subject: RE: [Full-disclosure] DOS all platforms
You can have whatever generation firewall you like, if your router (and everyone else's) is fragged you are going nowhere!!! I suggest you read
the
entire thread to understand just how serious this could be. -----Original Message----- From: Lee Sent: 21 January 2004 10:25 To: Chris Brown Subject: Re: [Full-disclosure] DOS all platforms Some words, Dynamic Filtering 4th Generation Stateful Firewall...... Ability to control and block UDP packets.. ----- Original Message ----- From: "Chris Brown" To: <full-disclosure () lists netsys com> Sent: Thursday, January 22, 2004 1:54 AM Subject: [Full-disclosure] DOS all platformsHas anyone been following the thread on NTCanuck ref a DOS vulnerability they have discovered using UDP? I have no further info than what is inthisthread: http://ntcanuck.com/net/board/index.php?showtopic=175 But if all that they say is true.........We could be busy!! Chris Brown Senior Security Analyst _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
_______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
Current thread:
- DOS all platforms Chris Brown (Jan 21)
- Re: DOS all platforms hicks (Jan 21)
- Re: DOS all platforms Exibar (Jan 22)
- Re: DOS all platforms Mark Renouf (Jan 23)
- RE: DOS all platforms Brent Colflesh (Jan 23)
- RE: DOS all platforms Rob, grandpa of Ryan, Trevor, Devon & Hannah (Jan 24)
- RE: DOS all platforms Shawn Nunley (Jan 24)
- Re: DOS all platforms Exibar (Jan 22)
- Re: DOS all platforms Matt Burnett (Jan 23)
- Re: DOS all platforms hicks (Jan 21)
- <Possible follow-ups>
- Re: DOS all platforms Chris Brown (Jan 21)
- January 04 MDAC patch Geo. (Jan 23)
- RE: DOS all platforms James Lay (Jan 21)
- RE: DOS all platforms James . Cupps (Jan 23)
- Re: DOS all platforms Valdis . Kletnieks (Jan 23)
- Re: DOS all platforms Matt Burnett (Jan 23)
- Re: DOS all platforms Frank Knobbe (Jan 23)
- Re: DOS all platforms Valdis . Kletnieks (Jan 23)
- Re: Re: DOS all platforms Jonathan A. Zdziarski (Jan 24)
- Re: Re: DOS all platforms Valdis . Kletnieks (Jan 24)
- Re: Re: DOS all platforms Jeff Kell (Jan 24)