[Dailydave] Algorithmic Bugs
Matt Beaumont
mattb at cs.ucla.edu
Wed Jan 10 15:51:48 EST 2007
On Wed, Jan 10, 2007 at 12:37:11 -0500, Dave Aitel wrote:
> You can send a remarkably small stream of data at a NIDS and cause it
> to go to 100% CPU and stop doing analysis if you send the RIGHT stream
> of data.
The canonical paper is Rice and Wallach's "Denial of Service via Algorithmic
Complexity Attacks" [1], from USENIX Security '03. They also have a page [2]
with some followup work identifying specific vulnerabilities.
Cheers,
Matt
[1] http://www.cs.rice.edu/~scrosby/hash/CrosbyWallach_UsenixSec2003.pdf
[2] http://www.cs.rice.edu/~scrosby/hash/
More information about the Dailydave
mailing list