<a href="http://g.adspeed.net/ad.php?do=clk&zid=14678&wd=728&ht=90&pair=as" target="_top"><img style="border:0px;" src="http://g.adspeed.net/ad.php?do=img&zid=14678&wd=728&ht=90&pair=as" alt="i" width="728" height="90"/></a>

Nmap Security Scanner

Docs
Security Lists

Full Disclosure

More
Security Tools

Packet crafters

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

edgeos

Bugtraq: Re: Cisco HSRP Weakness/DoS

Re: Cisco HSRP Weakness/DoS

From: bashis <bash_at_NS.WCD.SE>
Date: Sat, 5 May 2001 18:12:16 +0200

Hi

> b) what worries me about this method is that it is close to ideal for
> a man in the middle attack (take over default gw, rewrite source
> address to my own address, rewrite anything else in the packet, send
> to the real router).

It's realy old news, this was allready known in '98 when they written
RFC 2281 ( http://www.faqs.org/rfcs/rfc2281.html )
but nobody have talked about it in public,
except Cisco who is saying how good it is, to get a fault tolerant network..

Well, i'm not suprised that there are lots of ppl who dont know this,
so thats why i posted it to bugtraq, to make ppl aware of it..

Regards,
bashis

--
\0x62\0x61\0x73\0x68\0x69\0x73

Received on May 05 2001

This message: [ Message body ]
Next message: Georgi Guninski: "IIS 5.0 PROPFIND DOS #2"
Previous message: bashis: "Cisco Catalyst 2900XL crashes with empty UDP packet when SNMP is disabled."
Maybe in reply to: bashis: "Cisco HSRP Weakness/DoS"
Next in thread: Damir Rajnovic: "Re: Cisco HSRP Weakness/DoS"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]

[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]

edgeos