[nsp-sec] New IPV6 NDP issue (via cert)
Florian Weimer
fweimer at bfk.de
Mon Oct 6 02:48:00 EDT 2008
* Chris Morrow:
> since one of my vendors sent out a note about this (hi greg, ask your
> alert folks to actually put the alert on the alert page eh?), another
> is listed.. what say you vendor folks?
I've been told that Linux does not honor ND requests with off-link
addresses. I don't know how this interacts with tunneling.
This vulnerability is different from ARP spoofing because it allows
you to install arbitrary /128s into the node's routing table. ARP
spoofing is confined to adresses on the same subnet.
--
Florian Weimer <fweimer at bfk.de>
BFK edv-consulting GmbH http://www.bfk.de/
Kriegsstraße 100 tel: +49-721-96201-1
D-76133 Karlsruhe fax: +49-721-96201-99
More information about the nsp-security
mailing list