Bugtraq: Follow-Up: Security Problems with Linux 2.2.x IP Masquerading

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Bugtraq mailing list archives

Follow-Up: Security Problems with Linux 2.2.x IP Masquerading

From: hdm () SECUREAUSTIN COM (H D Moore)
Date: Tue, 28 Mar 2000 12:07:49 -0600


Following the "NetBIOS Info" thread on Incidents mailing list at SF,
Robert Graham <bugtraq () NETWORKICE COM> mentioned a utility he wrote to
automatically respond to netbios port 137 name probes with a netbios
name lookup back to the originating host.  He mentioned that it seems to
cut right through state-based firewalls and NAT systems because the
response probe looks like a response to the outgoing probe.  Assuming
that a host on an inside network is sending out these netbios name
queries (1), an attacker could exploit the linux 2.2.x vulnerability and
be able to query the netbios names of internal machines.

-HD

1: http://www.robertgraham.com/pubs/firewall-seen.html#netbios

By Date By Thread

Current thread:

Re: Esafe Protect Gateway (CVP) does not scan virus under some, (continued)
- Re: Esafe Protect Gateway (CVP) does not scan virus under some Eric Chien (Mar 24)
- Re: Esafe Protect Gateway (CVP) does not scan virus under some Jason Brvenik (Mar 24)
- Re: Esafe Protect Gateway (CVP) does not scan virus under some Lea, Michael (Mar 24)
  - Security Problems with Linux 2.2.x IP Masquerading H D Moore (Mar 27)
    - Follow-Up: Security Problems with Linux 2.2.x IP Masquerading H D Moore (Mar 28)
    - privacy problems with HTTP cache-control Martin Pool (Mar 28)
    - Objectserver vulnerability Howard M. Kash III (Mar 29)
    - Citrix ICA Basic Encryption Dug Song (Mar 29)
    - Re: Citrix ICA Basic Encryption Weld Pond (Mar 28)
    - Re: Citrix ICA Basic Encryption Chris Knight (Mar 29)