Full Disclosure: Re: low bandwidth DoS attack against TCP/IP stack

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Full Disclosure mailing list archives

Re: low bandwidth DoS attack against TCP/IP stack

From: Jorrit Kronjee <full-disclosure () nospam wafel org>
Date: Thu, 02 Oct 2008 20:17:29 +0200

redb0ne () hush com wrote:

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

There's been some buzz about a new bug within the TCP/IP-protocol.
According to the people who discovered it, it affects some if not
all
OSes. They explain it a little bit in an interview (URL below)
without
telling any details.


Fyodor released some speculation earlier today:

http://insecure.org/stf/tcp-dos-attack-explained.html


And Robert E. Lee posted on his blog that Fyodor's explanation doesn't 
actually describe the bug they found.

http://blog.robertlee.name/2008/10/conjecture-speculation.html

Kind regards,

Jorrit

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

By Date By Thread

Current thread:

low bandwidth DoS attack against TCP/IP stack Jorrit Kronjee (Oct 02)
- <Possible follow-ups>
- Re: low bandwidth DoS attack against TCP/IP stack redb0ne (Oct 02)
  - Re: low bandwidth DoS attack against TCP/IP stack Jorrit Kronjee (Oct 02)