Re: [Full-Disclosure] EEYE: Kerio Personal Firewall Multiple IP Options Denial of Service
From: Nicolas RUFF (ruff.lists_at_edelweb.fr)
Date: 11/15/04
- Previous message: Colin.Scott_at_csplc.com: "RE: [Full-Disclosure] IE is just as safe as FireFox"
- In reply to: Jörg Klemenz: "Re: [Full-Disclosure] EEYE: Kerio Personal Firewall Multiple IP Options Denial of Service"
- Next in thread: Marc Maiffret: "RE: [Full-Disclosure] EEYE: Kerio Personal Firewall Multiple IP Options Denial of Service"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
To: Full-Disclosure <full-disclosure@lists.netsys.com> Date: Mon, 15 Nov 2004 11:55:13 +0100
> Does anyone actually *knows* if KPF 2 and the "Tiny" versions are
> vulnerable to this? Kerio's web page says:
> ...
> Has anyone seen exploits for this circulating?
Just tried on my box : TPF v2.0.15A built on 22/10/2001 is not
vulnerable to the K-Otik exploit.
http://www.k-otik.com/exploits/20041111.HOD-kerio-firewall-DoS-expl.c
(BTW, I guess someone could craft a much simpler exploit with HPING ...)
-Nicolas RUFF
Security Consultant, EdelWeb
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
- Previous message: Colin.Scott_at_csplc.com: "RE: [Full-Disclosure] IE is just as safe as FireFox"
- In reply to: Jörg Klemenz: "Re: [Full-Disclosure] EEYE: Kerio Personal Firewall Multiple IP Options Denial of Service"
- Next in thread: Marc Maiffret: "RE: [Full-Disclosure] EEYE: Kerio Personal Firewall Multiple IP Options Denial of Service"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
