nanog mailing list archives
Re: OPS: SECURITY new packet of death
From: "James D. Butt" <jbutt () mwci net>
Date: Fri, 21 Nov 1997 09:51:55 -0600 (CST)
land.c is this programI tried it against a 7505 running 11.2(9)P and a 2511 running 11.2(7a), with no obvious bad effects. The announcement does not indicate which IOS versions are vulnerable; I'd love to know.
Snipit of a message on bugtraq dated today.. Ascend Pipeline 50 rev 5.0Ap13 NOT vulnerable Cisco IOS 10.3(7) IS vulnerable Cisco 2511 IOS ??? IS vulnerable Cisco 753 IOS ??? IS vulnerable LaserJet Printer NOT vulnerable Livingston Office Router (ISDN) IS vulnerable Livingston PM* ComOS 3.5b17 + 3.7.2 NOT vulnerable NCD X Terminals, NCDWare v3.2.1 IS vulnerable Off of another message.. I just tested land.c on a cisco 753 router running version 4.0 of the os. It DID freeze the router when I hit it on port 23. The router wasn't able to reach the internal lan or the wan and some lights on the front of the router were frozen also. I couldn't ping or telnet to the router, the only way to restart it is a hard reboot. -------------------------------------------------------------------------- James D. Butt 'J.D.' Network Engineer Voice 319-557-8463 Network Operations Center Fax 319-557-9771 MidWest Communications, Inc. Pager 319-557-6347 241 Main St. noc () mwci net Dubuque, IA 52001 jbutt () mwci net --------------------------------------------------------------------------
Current thread:
- OPS: SECURITY new packet of death Sean Donelan (Nov 21)
- Re: OPS: SECURITY new packet of death Henry Linneweh (Nov 21)
- Re: OPS: SECURITY new packet of death Charley Kline (Nov 21)
- Re: OPS: SECURITY new packet of death James D. Butt (Nov 21)
- Re: OPS: SECURITY new packet of death Leigh Porter (Nov 21)
- Re: OPS: SECURITY new packet of death Nathan Bates (Nov 25)
- Re: OPS: SECURITY new packet of death Karl Denninger (Nov 21)
- Re: OPS: SECURITY new packet of death blast (Nov 21)
- Re: OPS: SECURITY new packet of death Charley Kline (Nov 21)
- Re: OPS: SECURITY new packet of death John Hawkinson (Nov 21)
- Re: OPS: SECURITY new packet of death Alex Rubenstein (Nov 21)
- Re: OPS: SECURITY new packet of death Avi Freedman (Nov 21)
- Re: OPS: SECURITY new packet of death Henry Linneweh (Nov 21)
- <Possible follow-ups>
- Re: OPS: SECURITY new packet of death Daniel MacKay (Nov 21)
- Re: OPS: SECURITY new packet of death Stan Barber (Nov 21)