[nsp-sec] Potential TCP / IP vulnerabilities announcedmidOctober - Outpost24 interview
Florian Weimer
fweimer at bfk.de
Sat Oct 4 09:41:53 EDT 2008
* David Freedman:
> ----------- nsp-security Confidential --------
>
> I'm surprised nobody is sprouting this one at the moment:
>
> http://tools.ietf.org/html/draft-ietf-tcpm-icmp-attacks-03
>
> attacking ICMP is far more profitable since the communication is
> unidirectional, you don't have to guess TCP sequence numbers,
> and you can tear down TCP with it.
The difference is between taking down a single TCP connection (where
you even have to guess the connection quadruple, at the very least),
and taking out the entire node.
--
Florian Weimer <fweimer at bfk.de>
BFK edv-consulting GmbH http://www.bfk.de/
Kriegsstraße 100 tel: +49-721-96201-1
D-76133 Karlsruhe fax: +49-721-96201-99
More information about the nsp-security
mailing list