[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Full-Disclosure] Re: [VulnWatch] TCP Reset Attacks: Paper and Code Now Availble

To: Kurt Seifried <listuser@xxxxxxxxxxxx>
Subject: [Full-Disclosure] Re: [VulnWatch] TCP Reset Attacks: Paper and Code Now Availble
From: sullo@xxxxxxxx
Date: Fri, 23 Apr 2004 08:10:36 -0400

Quoting Kurt Seifried <listuser@xxxxxxxxxxxx>:
> According to the Cisco presentation afterwards, Cisco's RST behavior makes
> it non vulnerable as there is a wait period after a certain number of bad
> RST packets are recieved. Thus Cisco IOS is basically not affected.

So, this advisory on Cisco's site is a hoax? It states:
"Products which contain a TCP stack are susceptible to this vulnerability. All
Cisco products and models are affected."

http://www.cisco.com/warp/public/707/cisco-sa-20040420-tcp-ios.shtml


Regards,
Sullo



--

http://www.cirt.net/   |   http://www.osvdb.org/

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

References:
- [Full-Disclosure] TCP Reset Attacks: Paper and Code Now Availble
  - From: sullo
- [Full-Disclosure] Re: [VulnWatch] TCP Reset Attacks: Paper and Code Now Availble
  - From: Kurt Seifried

Prev by Date: [Full-Disclosure] re: First Report : New Blaster?
Next by Date: [Full-Disclosure] Re: Outbreak of a virus on campus, scanning tcp 80/6129/1025/3127
Previous by thread: [Full-Disclosure] Re: [VulnWatch] TCP Reset Attacks: Paper and Code Now Availble
Next by thread: [Full-Disclosure] Re: [VulnDiscuss] Re: [VulnWatch] TCP Reset Attacks: Paper and Code Now Availble
Index(es):
- Date
- Thread