[Dailydave] Fun with Linux (2.6.12 -> 2.6.15.2)
H D Moore
hdm-daily-dave at digitaloffense.net
Tue Feb 7 12:39:36 EST 2006
A fun remote DoS was fixed today. The bug occurs when the kernel tries to
respond to an ICMP packet and the ip_options_echo() function fails.
So far, it seems like the two ways to trigger this are via record-route
and timestamp IP options that have needaddr bit set and a truncated
value. The easy fix is to block ICMP until you upgrade your kernels...
http://www.kernel.org/diff/diffview.cgi?file=%2Fpub%2Flinux%2Fkernel%2Fv2.6%2Fpatch-2.6.15.3.bz2;z=27
Add the recent FreeBSD SACK bug, the various Windows driver bugs, and some
magic OS X 0day and you can keep your entire local network staring at
crash dump screens indefinitely...
-HD
More information about the Dailydave
mailing list