Home page logo

bugtraq logo Bugtraq mailing list archives

Fore/Marconi ATM Switch 'land' vulnerability
From: "Seeker of Truth" <seeker_sojourn () hotmail com>
Date: Fri, 14 Jun 2002 23:35:41 +0000

System Versions FT6.1.1 and FT7.0.1

Labratory testing indicates that a single 'land' packet sent to the telnet port (23) of either the inband or out-of-band interface will cause the device to stop responding to ip traffic. Over the course of 6-1/2 minutes, all CPU will be consumed and device reboots.

Basically a packet is forged with the source and destination IP address and ports identical.

We reproduced it using Internet Security Scanner 6.01 and the 'land' and 'ciscoland' tests.
Many sources and derivatives are available on public security websites.

It's a TCP/IP stack bug that's been known since 1997. Here are some links


Vendor notified one year ago today :-)


Send and receive Hotmail on your mobile device: http://mobile.msn.com

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]