Bugtraq mailing list archives

Re: Loopback and multi-homed routing flaw in TCP/IP stack.

From: "J. Bol" <j.bol () ITSEC NL>
Date: Tue, 6 Mar 2001 11:04:11 +0100

2.2 is vulnerable, but 2.4 is not. as far as i can tell, 2.4 systems
don't even have a localhost routing entry anymore.


We've been testing with a kernel 2.2.16 victim, which is standard with
RH7.0 and an attacker with kernel 2.0.34. I can see packets comming in
from the attacker, but the kernel does not respond to these.

We also set up an attacker with kernel 2.2.16 and tried the same attack.
No packets arrive on the victim.

jeroen & christian

Attachment: smime.p7s
Description: S/MIME Cryptographic Signature

Current thread:

Re: Loopback and multi-homed routing flaw in TCP/IP stack., (continued)
- - Re: Loopback and multi-homed routing flaw in TCP/IP stack. John Cronin (Mar 05)
    - Re: Loopback and multi-homed routing flaw in TCP/IP stack. Ben Laurie (Mar 06)
  - Re: Loopback and multi-homed routing flaw in TCP/IP stack. ddowney (Mar 05)
    - Re: Loopback and multi-homed routing flaw in TCP/IP stack. Perry Harrington (Mar 05)
    - Re: Loopback and multi-homed routing flaw in TCP/IP stack. Ben Laurie (Mar 06)
    - Re: Loopback and multi-homed routing flaw in TCP/IP stack. Perry Harrington (Mar 06)
    - Re: Loopback and multi-homed routing flaw in TCP/IP stack. Ben Laurie (Mar 06)
    - Re: Loopback and multi-homed routing flaw in TCP/IP stack. Dan Harkless (Mar 06)
- Re: Loopback and multi-homed routing flaw in TCP/IP stack. Kyle Sparger (Mar 05)
  - Re: Loopback and multi-homed routing flaw in TCP/IP stack. MaD dUCK (Mar 05)
    - Re: Loopback and multi-homed routing flaw in TCP/IP stack. J. Bol (Mar 06)
    - Re: Loopback and multi-homed routing flaw in TCP/IP stack. Kyle Sparger (Mar 06)
    - Re: Loopback and multi-homed routing flaw in TCP/IP stack. Kurt Seifried (Mar 06)
- Re: Loopback and multi-homed routing flaw in TCP/IP stack. Neil W Rickert (Mar 05)
  - Re: Loopback and multi-homed routing flaw in TCP/IP stack. Ben Laurie (Mar 06)
    - Re: Loopback and multi-homed routing flaw in TCP/IP stack. David Litchfield (Mar 06)
    - Re: Loopback and multi-homed routing flaw in TCP/IP stack. Robert Collins (Mar 06)
    - Re: Loopback and multi-homed routing flaw in TCP/IP stack. Lincoln Yeoh (Mar 07)
  - Message not available
    - Re: Loopback and multi-homed routing flaw in TCP/IP stack. Lars Mathiesen (Mar 06)
- Re: Loopback and multi-homed routing flaw in TCP/IP stack. Lothar Beta (Mar 06)
  - Re: Loopback and multi-homed routing flaw in TCP/IP stack. David Damerell (Mar 06)

(Thread continues...)