HTTPS scans

From: Keith T. Morgan (keith.morgan@terradon.com)
Date: 03/11/02


Date: Mon, 11 Mar 2002 12:53:49 -0500
From: "Keith T. Morgan" <keith.morgan@terradon.com>
To: <incidents@securityfocus.com>

We're starting to see a surge in scans for tcp 443. My guess is that someone has scripted an attack against the mod_ssl vulnerability.

----------------------------------------------------------------------------
This list is provided by the SecurityFocus ARIS analyzer service.
For more information on this free incident handling, management
and tracking system please see: http://aris.securityfocus.com



Relevant Pages

  • Re: [Full-Disclosure] Core Internet Vulnerable - News at 11:00
    ... Systems that rely on persistent TCP connections, ... Most implementations of the Border Gateway Protocol (BGP) rely on the Transmission Control Protocol to maintain persistent unauthenticated network sessions. ... Sustained exploitation of this vulnerability could lead to a denial of service condition; in the case of BGP systems, portions of the Internet community may be affected. ... Paul Watson has performed the statistical analysis of this attack when the ISN is not known and has pointed out that such an attack could be viable when specifically taking into account the TCP Window size. ...
    (Full-Disclosure)
  • Re: HTTPS scans
    ... >We're starting to see a surge in scans for tcp 443. ... someone has scripted an attack against the mod_ssl vulnerability. ... by going to the SSL side of the web server. ...
    (Incidents)
  • Re: [Full-Disclosure] Core Internet Vulnerable - News at 11:00
    ... NISCC Vulnerability Advisory 236929 ... Vulnerability Issues in TCP ... > attack on TCP BGP sessions? ...
    (Full-Disclosure)
  • NISCC Vulnerability Advisory 236929: Vulnerability Issues in TCP
    ... NISCC Vulnerability Advisory 236929 ... Vulnerability Issues in TCP ... The issue described in this advisory is the practicability of resetting an established TCP connection by sending suitable TCP packets with the RST or SYN flags set. ... NISCC has produced best practice guidelines for BGP available at ...
    (Bugtraq)
  • [Full-disclosure] Cisco Security Advisory: Cisco IOS Software Multiple Features Crafted TCP Sequ
    ... Cisco IOS Software Multiple Features Crafted ... Cisco IOS Software contains a vulnerability in multiple features ... A sequence of specially crafted TCP ...
    (Full-Disclosure)