On Fri, 18 Oct 2002 18:51:16 -0700 (PDT),
"David S. Miller" <davem@redhat.com> wrote:
> From: "Breno" <breno_silva@bandnet.com.br>
> Date: Fri, 18 Oct 2002 22:42:12 -0300
>
> http://online.securityfocus.com/archive/1/295855/2002-10-15/2002-10-21/1
>
>There is nothing concrete at all about said "exploit".
>
>It looks like just a clever way to divert the victim's
>attention from the real mechanism these guys are using
>to root peoples boxes.
Agreed.
>It is nearly impossible for a TCP frag handling exploit
>to allow a root shell and socket to that shell to be
>created. So I think the claims are total nonsense.
The last mail on that thread is interesting[*], fooling the victim into
running a vulnerable version of tcpdump by claiming a vulnerability in
TCP.
[*] http://online.securityfocus.com/archive/1/295855/2002-10-15/2002-10-21/2
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/
This archive was generated by hypermail 2b29 : Wed Oct 23 2002 - 22:00:45 EST