Re: SYMSA-2007-007: Palm OS Treo Smartphone Denial of Service

To: MBEDNAR@xxxxxxxxxxxxx (Michael Bednar)
Subject: Re: SYMSA-2007-007: Palm OS Treo Smartphone Denial of Service
From: "Tuc at T-B-O-H.NET" <ml@xxxxxxxxxxx>
Date: Tue, 21 Aug 2007 12:51:57 -0400 (EDT)
Cc: bugtraq@xxxxxxxxxxxxxxxxx
In-reply-to: <1755E330C9F06C4DA3E2509A8E605A0A0208E743@xxxxxxxxxxxxxxxxxx>
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm

>       On a side note, when I was testing this vulnerability, I tried
> varying the size of the ICMP packet. Strangely enough, I got no response
> if the packet was of size 1469 bytes, or 1471 bytes. There must be
> something special about 1470 byte ICMP packets. Anyone have any ideas?
> 
        Something about fragmentation maybe? Maybe just on the cusp where it
expects another packet with the continuation and doesn't get it, or 
gets the continuation but doesn't expect it?

                Tuc/TBOH

References:
- RE: SYMSA-2007-007: Palm OS Treo Smartphone Denial of Service
  - From: Michael Bednar

Prev by Date: Olate Download 3.4.2~download.php ~ sql injection
Next by Date: Buffer-overflow in the Asura engine
Previous by thread: RE: SYMSA-2007-007: Palm OS Treo Smartphone Denial of Service
Next by thread: Re: Re: SYMSA-2007-007: Palm OS Treo Smartphone Denial of Service
Index(es):
- Date
- Thread