Re: ICMP spoofed source tunneling

fenfire_at_abwesend.de
Date: 09/22/04

  • Next message: steve menard: "Re: Diebold Global Election Management System (GEMS) Backdoor Account Allows Authenticated Users to Modify Votes"
    Date: Wed, 22 Sep 2004 12:33:50 +0200
    To: bugtraq@securityfocus.com
    
    

    On Tue, Sep 21, 2004 at 08:55:04PM +0400, Max Tulyev wrote:
    > Let's imagine in Net a hacker having his source server(S), destination
    > server(D), and a ip-capable device - victim(V). S sends to V spoofed ICMP
    > echo request packet containing IP source address of D, and the data in
    > Payload.
    >
    > When V receiving that packet, it sends ICMP echo-reply packet to D, AND
    > FORWARDS TO D ALL DATA IN PAYLOAD!

    This could also be used by peer-to-peer networks to achieve sender
    anonymity. (Of course you could also directly send UDP packets with forged
    source addresses...)


  • Next message: steve menard: "Re: Diebold Global Election Management System (GEMS) Backdoor Account Allows Authenticated Users to Modify Votes"