[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-disclosure] Reflection Scan: an Off-Path Attack on TCP

To: Jan Wrobel <wrr@xxxxxxxxxxxx>
Subject: Re: [Full-disclosure] Reflection Scan: an Off-Path Attack on TCP
From: Marsh Ray <marsh@xxxxxxxxxxxxxxxxxx>
Date: Thu, 19 Jan 2012 10:12:54 -0600

On 01/17/2012 04:45 PM, Jan Wrobel wrote:
>
> Abstract:
> The paper demonstrates how traffic load of a shared packet queue can
> be exploited as a side channel through which protected information
> leaks to an off-path attacker.

C.f. The Thing
http://en.wikipedia.org/wiki/Thing_%28listening_device%29

- Marsh

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

References:
- [Full-disclosure] Reflection Scan: an Off-Path Attack on TCP
  - From: Jan Wrobel

Prev by Date: [Full-disclosure] Drupal Panels Module XSS Vulnerability
Next by Date: [Full-disclosure] Advisory 01/2012: Suhosin PHP Extension Transparent Cookie Encryption Stack Buffer Overflow
Previous by thread: Re: [Full-disclosure] Reflection Scan: an Off-Path Attack on TCP
Next by thread: [Full-disclosure] [ MDVSA-2012:008 ] perl
Index(es):
- Date
- Thread