Bugtraq mailing list archives
Re: Advisory Update: ServerIron TCP/IP predictability fixed
From: hdm () SECUREAUSTIN COM (H D Moore)
Date: Tue, 14 Mar 2000 20:15:57 -0600
Hi, BeOS 4.0 also has a shoddy tcp/ip stack which increases the ISS by 1 per connection. This may been fixed by now, I haven't tested it in over a year. -HD Andrew van der Stock wrote:
The ISS is incremented by 1 for each connection, and is thus easily spoofable and hijackable. The predictability exposes sideband information about when the switch is being used by other (possibly legitimate) users. The hosts behind the switch are NOT affected by this issue. The faked IP addresses offer the predictability of the hosted platform (ie Linux 2.2.14 == good luck!, Win9x == trivial joke).
Current thread:
- TESO & C-Skills development advisory -- imwheel, (continued)
- TESO & C-Skills development advisory -- imwheel Sebastian (Mar 16)
- Re: TESO & C-Skills development advisory -- imwheel WHiTe VaMPiRe (Mar 19)
- TESO & C-Skills development advisory -- imwheel Sebastian (Mar 16)
- Re: TESO advisory -- wmcdplay Kris Kennaway (Mar 11)
- CSS Exploits + RDS (IE5) Shane Hird (Mar 12)
- Advisory Update: ServerIron TCP/IP predictability fixed Andrew van der Stock (Mar 12)
- Exploit for Mandrake 6.1 (PAM/userhelper bug) Paulo Ribeiro (Mar 14)
- Re: Exploit for Mandrake 6.1 (PAM/userhelper bug) Darron Froese (Mar 17)
- Re: Exploit for Mandrake 6.1 (PAM/userhelper bug) Matt Davis (Mar 17)
- Re: Exploit for Mandrake 6.1 (PAM/userhelper bug) Jeremy Gault (Mar 21)
- Oracle Web Listener 4.0.x Cerberus Security Team (Mar 14)
- Re: Advisory Update: ServerIron TCP/IP predictability fixed H D Moore (Mar 14)
- Re: Advisory Update: ServerIron TCP/IP predictability fixed Max Vision (Mar 16)
- FreeBSD Security Advisory: FreeBSD-SA-00:07.mh [REVISED] FreeBSD Security Officer (Mar 19)
- Bypassing IP filters in Bordermanager 3.5 Roy Sigurd Karlsbakk (Mar 15)
- Local / Remote DoS Attack in MERCUR WebView WebMail-Client 1.0 for Windows 98/NT Vulnerability Ussr Labs (Mar 15)
- Certificate Validation Error in Netscape Browsers... Dennis W. Mattison (Little Wolf) (Mar 15)
- TESO & C-Skills development advisory -- kreatecd Sebastian (Mar 16)
- Trend Micro release patch for "OfficeScan DoS & Message Replay" V ulnerabilies Richard Sheng (Mar 16)
- Exploit for Mandrake 6.1 (PAM/userhelper bug) Paulo Ribeiro (Mar 14)
- Re: TESO advisory -- wmcdplay Wichert Akkerman (Mar 13)