Revised draft on ICMP attacks

To: full-disclosure@xxxxxxxxxxxxxxxxx
Subject: Revised draft on ICMP attacks
From: Fernando Gont <fernando@xxxxxxxxxxx>
Date: Mon, 24 Oct 2005 11:51:05 -0300
Cc: bugtraq@xxxxxxxxxxxxxxxxx
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm

Folks,

I have published a revision of my draft on ICMP attacks against TCP. Somenew stuff you may find interesting is a corner case for the attack againstthe PMTUD mechanism, that could allow an attacker to freeze TCPconnections, even those secured by means of IPSec. You can find that stuffin Section 7.1 of the draft. This revision also addresses some recentdiscussions at the TCPM WG mailing-list.

The draft is available athttp://www.gont.com.ar/drafts/draft-gont-tcpm-icmp-attacks-05.txt(http://www.gont.com.ar/draft/icmp-attacks-against-tcp.html)


Feedback is welcome, noise should go to /dev/null.


--
Fernando Gont
e-mail: fernando@xxxxxxxxxxx || fgont@xxxxxxx

Prev by Date: [security bulletin] SSRT051055 rev.0 - HP Oracle for OpenView (OfO) Critical Patch Update October 2005
Next by Date: Possible Bug in PHP-Fusion 6.0.204
Previous by thread: [security bulletin] SSRT051055 rev.0 - HP Oracle for OpenView (OfO) Critical Patch Update October 2005
Next by thread: Possible Bug in PHP-Fusion 6.0.204
Index(es):
- Date
- Thread