nanog mailing list archives

Re: TCP/BGP vulnerability - easier than you think

From: Leo Bicknell <bicknell () ufp org>
Date: Fri, 23 Apr 2004 11:15:11 -0400


I point out NetBSD released this:

ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2004-006.txt.asc

Of interest is this paragraph:

] Additionally, the 4.4BSD stack from which NetBSD's stack is derived, did
] not even check that a RST's sequence number was inside the window. RSTs
] anywhere to the left of the window were treated as valid.

It's a good thing the 4.4BSD stack was unpopular, otherwise it might be
in a lot of programs.

-- 
       Leo Bicknell - bicknell () ufp org - CCIE 3440
        PGP keys at http://www.ufp.org/~bicknell/
Read TMBG List - tmbg-list-request () tmbg org, www.tmbg.org

Attachment: _bin
Description:

Current thread:

Re: TCP/BGP vulnerability - easier than you think, (continued)
- - - Re: TCP/BGP vulnerability - easier than you think Paul Jakma (Apr 21)
    - RE: TCP/BGP vulnerability - easier than you think David Luyer (Apr 21)
    - Re: TCP/BGP vulnerability - easier than you think Crist Clark (Apr 22)
    - Re: TCP/BGP vulnerability - easier than you think John Kristoff (Apr 21)
    - Re: TCP/BGP vulnerability - easier than you think E.B. Dreger (Apr 21)
    - Re: TCP/BGP vulnerability - easier than you think Iljitsch van Beijnum (Apr 22)
    - Re: TCP/BGP vulnerability - easier than you think Paul Jakma (Apr 23)
    - Re: TCP/BGP vulnerability - easier than you think E.B. Dreger (Apr 21)
    - Message not available
    - Re: TCP/BGP vulnerability - easier than you think Iljitsch van Beijnum (Apr 23)
    - Message not available
    - Re: TCP/BGP vulnerability - easier than you think Iljitsch van Beijnum (Apr 23)
    - Re: TCP/BGP vulnerability - easier than you think Leo Bicknell (Apr 23)
    - Re: TCP/BGP vulnerability - easier than you think Petri Helenius (Apr 23)
    - Re: TCP/BGP vulnerability - easier than you think Todd Vierling (Apr 23)
    - Re: TCP/BGP vulnerability - easier than you think Priscilla Oppenheimer (Apr 26)
    - Re: TCP/BGP vulnerability - easier than you think Iljitsch van Beijnum (Apr 27)
    - Re: TCP/BGP vulnerability - easier than you think Priscilla Oppenheimer (Apr 27)
    - Re: TCP/BGP vulnerability - easier than you think Simon Leinen (Apr 28)
    - Re: TCP/BGP vulnerability - easier than you think Todd Vierling (Apr 21)
    - Re: TCP/BGP vulnerability - easier than you think Pete Kruckenberg (Apr 21)
    - Vendor TCP oops-es (was Re: TCP/BGP vulnerability) Todd Vierling (Apr 21)
    - Re: Vendor TCP oops-es (was Re: TCP/BGP vulnerability) Iljitsch van Beijnum (Apr 21)

(Thread continues...)