Snort mailing list archives
Re: Fw: Cisco Vulnerability Testing Results
From: "Marc Quibell" <mquibell () fbfs com>
Date: Tue, 22 Jul 2003 10:31:12 -0500
Ahhh...shoulda read the exploit. I can see where you got the TTL 1 or 0. Cisco says those three protocols should have those TTLs set, but it then says that, "103 (Protocol Independent Multicast - PIM) with any TTL value", so I guess it's not true for all of the DoS attacks... ------------------------------------------------------- This SF.net email is sponsored by: VM Ware With VMware you can run multiple operating systems on a single machine. WITHOUT REBOOTING! Mix Linux / Windows / Novell virtual machines at the same time. Free trial click here: http://www.vmware.com/wl/offer/345/0 _______________________________________________ Snort-users mailing list Snort-users () lists sourceforge net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/listinfo/snort-users Snort-users list archive: http://www.geocrawler.com/redir-sf.php3?list=snort-users
Current thread:
- Re: [Snort-sigs] Re: Fw: Cisco Vulnerability Testing Results, (continued)
- Re: [Snort-sigs] Re: Fw: Cisco Vulnerability Testing Results Michael Scheidell (Jul 20)
- Re: Re: [Snort-sigs] Re: Fw: Cisco Vulnerability Testing Results Rich Adamson (Jul 20)
- snort.conf Tantravahi Venkata Aditya (Jul 20)
- RE: snort.conf Scott Renna (Jul 20)
- preprocessor logs Tantravahi Venkata Aditya (Jul 20)
- Re: preprocessor logs Matt Kettler (Jul 21)
- Viewing ACID set's off P..O..R..N rules ... Jason Whitson (Jul 21)
- RE: Viewing ACID set's off P..O..R..N rules ... Scott Renna (Jul 21)
- Re: Viewing ACID set's off P..O..R..N rules ... Jason Whitson (Jul 21)
- RE: Viewing ACID set's off P..O..R..N rules ... Scott Renna (Jul 21)
- Re: Re: [Snort-sigs] Re: Fw: Cisco Vulnerability Testing Results Rich Adamson (Jul 20)
- Re: [Snort-sigs] Re: Fw: Cisco Vulnerability Testing Results Michael Scheidell (Jul 20)