Re: [Full-Disclosure] Re: [VulnWatch] TCP Reset Attacks: Paper and Code Now Availble

Brent.Wolfram_at_tsx.com
Date: 04/23/04

  • Next message: Patrick Olsen: "[Full-Disclosure] Security Sites" 
    To: bugtraq@securityfocus.com, full-disclosure@lists.netsys.com, full-disclosure-admin@lists.netsys.com, sullo@cirt.net, vulnwatch@vulnwatch.org
Date: Fri, 23 Apr 2004 06:29:59 -0700

    Cisco presentation:

    http://www.cansecwest.com/csw04/csw04-Ahlawat.ppt

    It is affected, and they are making changes.

    "Kurt Seifried" <listuser@seifried.org>
    Sent by: full-disclosure-admin@lists.netsys.com
    04/22/2004 09:04 PM
    Please respond to "Kurt Seifried"

     
            To: <sullo@cirt.net>, <vulnwatch@vulnwatch.org>, <bugtraq@securityfocus.com>,
    <full-disclosure@lists.netsys.com>
            cc:
            Subject: [Full-Disclosure] Re: [VulnWatch] TCP Reset Attacks: Paper and Code Now
    Availble

    Please note:

    According to the Cisco presentation afterwards, Cisco's RST behavior makes
    it non vulnerable as there is a wait period after a certain number of bad
    RST packets are recieved. Thus Cisco IOS is basically not affected.

    Kurt Seifried, kurt@seifried.org
    A15B BEE5 B391 B9AD B0EF
    AEB0 AD63 0B4E AD56 E574
    http://seifried.org/security/

    _______________________________________________
    Full-Disclosure - We believe in it.
    Charter: http://lists.netsys.com/full-disclosure-charter.html

    _______________________________________________
    Full-Disclosure - We believe in it.
    Charter: http://lists.netsys.com/full-disclosure-charter.html

  • Next message: Patrick Olsen: "[Full-Disclosure] Security Sites"