SYN-cookies & iptables vulnerability

From: The Skull (skull@skull.net)
Date: 01/23/02

Next message: Dale Pontius: "Re: starting iptables, rc.local?"

Previous message: Steve Collymore: "RH Linux 7.2 iptables"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

From: The Skull <skull@skull.net>
Date: Wed, 23 Jan 2002 17:13:17 +0100

I heard about the chance to trepass a specific filtered port due to a
vulnerability of syncookies code.
Anyone here knows a whitepaper about that? Somebody knows if it has been
exploited? And a link to an exploit?

thanx

-- 
Emanuele "SKULL" Balla
--------------------------------------------------------------------
"How should I know if it works?  That's what beta testers are for.  I only
coded it."
(Attributed to Linus Torvalds, somewhere in a posting)

Next message: Dale Pontius: "Re: starting iptables, rc.local?"
Previous message: Steve Collymore: "RH Linux 7.2 iptables"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages

Re: SYN-cookies & iptables vulnerability
... > I heard about the chance to trepass a specific filtered port due to a ... > vulnerability of syncookies code. ... > Anyone here knows a whitepaper about that? ...
(comp.os.linux.security)
Re: SYN-cookies & iptables vulnerability
... >> I heard about the chance to trepass a specific filtered port due to a ... >> vulnerability of syncookies code. ...
(comp.os.linux.security)
[Full-disclosure] Bypassing URL Authentication and Authorization with HTTP Verb Tampering
... We have written a whitepaper that goes into some detail discussing the vulnerability and how the various vendors are affected. ... You can grab the whitepaper from Aspect Security's website: ...
(Full-Disclosure)