Anyone know of a fix for this yet? -M@ ---------- Forwarded Message ---------- Date: Tue, 1 Jun 1999 17:43:17 +0200 From: Piotr Wilkin <[EMAIL PROTECTED]> To: [EMAIL PROTECTED] Subject: Linux kernel 2.2.x vulnerability/exploit I'm sorry if this has been noticed before, but since I did't find anything in the archives, I post it here. There seems to be a bug in kernels 2.2.x (tested on 2.2.7 and 2.2.9), that causes them to panic when they are sent a large number of specific ICMP packages. I think the problem comes from the combination of the mangled header length (shorter or longer ihl's don't cause hangup) and the random ICMP packets (random type/subtype and source address) this program sends. Windows 9x and FreeBSD 3.0 seem to be unaffected. [exploit snipped for brevity] -- Matthew Hixson - CIO "Noone has ever tried anything like this before." FroZenWave Communications "That's why its going to work." http://www.frozenwave.com -- Trinity and Neo - Linux SMP list: FIRST see FAQ at http://www.irisa.fr/prive/mentre/smp-faq/ To Unsubscribe: send "unsubscribe linux-smp" to [EMAIL PROTECTED]
