<a href="http://g.adspeed.net/ad.php?do=clk&zid=14678&wd=728&ht=90&pair=as" target="_top"><img style="border:0px;" src="http://g.adspeed.net/ad.php?do=img&zid=14678&wd=728&ht=90&pair=as" alt="i" width="728" height="90"/></a>

Nmap Security Scanner

Docs
Security Lists

Full Disclosure

More
Security Tools

Packet crafters

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

edgeos

Bugtraq: Re: denial of service attack possible

Re: denial of service attack possible

From: Jim Shankland <jas_at_flyingfox.COM>
Date: Fri, 27 Oct 1995 10:17:01 -0700

[Denial of service possible by remote host putting multiple connections
to a port into the SYN_RCVD state, thereby precluding further
(legitimate) connection attempts.]

It's even worse. The same thing was done deliberately by Kevin Mitnick
during his packet-spoofing attack on Shimomura's machines in San Diego.
Mitnick put lots of connections into the SYN_RCVD state on machine A,
thereby "jamming" machine A and preventing it from interfering
(by sending RST packets) with his attack on machine B, impersonating
machine A.

Jim Shankland
Flying Fox Computer Systems, Inc.
Received on Oct 27 1995

This message: [ Message body ]
Next message: Darrell Fuhriman: "Re: denial of service attack possible"
Previous message: Darren Reed: "Re: denial of service attack possible"
Maybe in reply to: Mark Thomas: "denial of service attack possible"
Next in thread: Dr. Frederick B. Cohen: "Re: denial of service attack possible"
Reply: Dr. Frederick B. Cohen: "Re: denial of service attack possible"
Reply: Eduardo E. Silva: "Sendmail bug."
Reply: *Hobbit*: "New tool available: Netcat"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]

[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]