Penetration Testing mailing list archives
RE: VLAN Issue
From: "Osborne-1, Brett" <Brett.Osborne-1 () ksc nasa gov>
Date: Tue, 12 Jun 2001 15:51:38 -0400
As the other two or so posts pointed out, there was recently a bug related to 802.1p/q (VLAN) related to Cisco Catalyst 2900 and 5000s. I can't seem to recall the bug number. See bugtraq ID 2604 (this looks like an older one) http://www.sans.org/infosecFAQ/switchednet/switch_security.htm http://cisco.com/warp/public/cc/so/cuso/epso/sqfr/safe_wp.htm (Cisco says that VLANs aren't secure. Are you going to argue with Cisco?) FYI, this was discussed on this list in great detail back in April 2001. Brett Osborne -----Original Message----- From: hellNbak [mailto:hellnbak () nmrc org] Sent: Sunday, June 10, 2001 12:59 AM To: pen-test () securityfocus com Subject: VLAN Issue Hi everyone. I am looking for an actual exploit to verify the VLAN hopping issue that was reported back in 1999. I have found a bunch of docs and a few email threads on it but it seems that no one has generated a working exploit. I am in the unfortunate situation where I have a client who is refusing to believe the documentation and actually wants a live demo. Why isn't reading an RFC and pointing out flaws enough for people anymore?? -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- "I don't intend to offend - I offend with my intent" hellNbak () nmrc org -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
Current thread:
- VLAN Issue hellNbak (Jun 10)
- Re: VLAN Issue Damieon Stark (Jun 11)
- Re: VLAN Issue Ryan Russell (Jun 12)
- Re: VLAN Issue Damieon Stark (Jun 12)
- Re: VLAN Issue Ryan Russell (Jun 12)
- <Possible follow-ups>
- RE: VLAN Issue Brewis, Mark (Jun 12)
- RE: VLAN Issue Osborne-1, Brett (Jun 12)
- RE: VLAN Issue John . Curran (Jun 13)
- Re: VLAN Issue Damieon Stark (Jun 11)