Re: [Full-disclosure] [scip_Advisory] NetGear RP114 Flooding Denial ofService

To: "Marc Ruef" <maru@xxxxxxx>, <bugtraq@xxxxxxxxxxxxxxxxx>, <full-disclosure@xxxxxxxxxxxxxxxxx>, <news@xxxxxxxxxxxxxx>, <submissions@xxxxxxxxxxxxxxxxxxxxxxx>, <partners@xxxxxxxxxxx>
Subject: Re: [Full-disclosure] [scip_Advisory] NetGear RP114 Flooding Denial ofService
From: "Morning Wood" <se_cur_ity@xxxxxxxxxxx>
Date: Mon, 12 Dec 2005 01:45:36 -0800
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm
References: <5F9D803B30A8E4418166E637D50E9E2A13A1D4@xxxxxxxxxxxxxxxxx>

dunno, but i know this has been an issue since the rt314 product (
1999-2000? )
a simple nmap -sS target trigers it external, and no supprise internal as
well.
( not fun running pentests behind one of these babys )
i dont know if you noticed that existing connections dont appear to be
affected
( IM and streaming traffic ) but dns generally gets hosed.

my2bits,
Donnie Werner
http://exploitlabs.com

References:
- [scip_Advisory] NetGear RP114 Flooding Denial of Service
  - From: Marc Ruef

Prev by Date: Guestserver guestbook system vulnerabilities
Next by Date: Re: Re: [KAPDA::#16] - SMF SQL Injection
Previous by thread: [scip_Advisory] NetGear RP114 Flooding Denial of Service
Next by thread: Re: [scip_Advisory] NetGear RP114 Flooding Denial of Service
Index(es):
- Date
- Thread