Re: [Full-disclosure] TCP/IP vulnerability

---

• From: "Ivan ." <ivanhec@xxxxxxxxx>
• Date: Wed, 23 May 2007 10:04:50 +1000

---

dude, check out Fernando Gont site

http://www.gont.com.ar/tools/icmp-attacks/index.html

cheers
Ivan

On 5/22/07, Mohit Kohli <mkohli@xxxxxxxxxxxxxxxx> wrote:

Hi Guys,



I got an assignment to write a white paper on TCP/IP and to show demo on how to exploits the same.



I have listed some of the vulnerability, but need some good tools (preferably windows based) to exploit the vulnerability and to perform further analysis.



overlapping IP fragments
Tear Drop
Land
SYN Attack
Ping Flooding
IP Spoofing

SYN Guessing

Smurf Attack

Source Routing
TCP Hijacking

Man-in-the-Middle Attack



I will appreciate; if you could provide me some inputs with regards to tools to exploits the vulnerability.



Cheers



Mohit






============================================================================================================================

Disclaimer:

This message and the information contained herein is proprietary and confidential and subject to the Tech Mahindra policy statement, you may review at http://www.techmahindra.com/Disclaimer.html externally and http://tim.techmahindra.com/Disclaimer.html internally within Tech Mahindra.

============================================================================================================================

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

---

• Follow-Ups:
  • Re: [Full-disclosure] TCP/IP vulnerability
    • From: Mohit Kohli

• References:
  • [Full-disclosure] TCP/IP vulnerability
    • From: Mohit Kohli

• Prev by Date: [Full-disclosure] [USN-462-1] PHP vulnerabilities
• Next by Date: [Full-disclosure] [ MDKSA-2007:108 ] - Updated gimp packages fix stack overflow in sunras plugin
• Previous by thread: Re: [Full-disclosure] TCP/IP vulnerability
• Next by thread: Re: [Full-disclosure] TCP/IP vulnerability
• Index(es):
  • Date
  • Thread

---

Relevant Pages Re: [Full-disclosure] nVidia.com [Url Redirection flaw] ... but just because this kind of vulnerability is "only" ... Full-Disclosure - We believe in it. ... Charter: http://lists.grok.org.uk/full-disclosure-charter.html ... Hosted and sponsored by Secunia - http://secunia.com/ ... (Full-Disclosure) RE: [Full-disclosure] Microsoft Windows and *nix Telnet Port Numb erArgument Obfuscation ... vulnerability thing and appreciate lurking hear and taking it ... Microsoft Windows and *nix Telnet Port ... Charter: http://lists.grok.org.uk/full-disclosure-charter.html ... Hosted and sponsored by Secunia - http://secunia.com/ ... (Full-Disclosure) Re: [Full-disclosure] PenTest mag ... but let it be a real vulnerability. ... Full-Disclosure - We believe in it. ... Charter: http://lists.grok.org.uk/full-disclosure-charter.html ... Hosted and sponsored by Secunia - http://secunia.com/ ... (Full-Disclosure) Re: [Full-disclosure] Google Apps CSRF vector, email disruption ... vulnerability or acquiring my intellectual property. ... Full-Disclosure - We believe in it. ... Charter: http://lists.grok.org.uk/full-disclosure-charter.html ... Hosted and sponsored by Secunia - http://secunia.com/ ... (Full-Disclosure)

---

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint

www.derkeiler.com  > Mailing-Lists  > Full-Disclosure  > 2007-05