Bugtraq: Re: Three possible DoS attacks against some IOS versions.

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Bugtraq mailing list archives

Re: Three possible DoS attacks against some IOS versions.

From: Felix Lindner <felix.lindner () nruns com>
Date: Sat, 08 Jun 2002 11:21:40 +0200

Sharad Ahlawat wrote:

an excerpt form RFC 2281 - Cisco HSRP

7. Security Considerations

[SNIP]

 It is difficult to subvert the protocol from outside the
 LAN as most routers will not forward packets addressed to the
 all-routers multicast address (224.0.0.2).


This does not prevent remote attacks because Cisco devices do not
validate the destination address of a HSRP packet. Unicast packets are
accepted, which can be tested using the hrsp tool at
http://www.phenoelit.de/irpas/ 

Regards
/F

By Date By Thread

Current thread:

Three possible DoS attacks against some IOS versions. Andrew Vladimirov (Jun 05)
- Re: Three possible DoS attacks against some IOS versions. Sharad Ahlawat (Jun 07)
  - Re: Three possible DoS attacks against some IOS versions. Felix Lindner (Jun 10)
    - Re: Three possible DoS attacks against some IOS versions. Sharad Ahlawat (Jun 12)
- <Possible follow-ups>
- Re: Three possible DoS attacks against some IOS versions. Big Poop (Jun 10)
- Re: Three possible DoS attacks against some IOS versions. Shane Gibson (Jun 11)