From owner-freebsd-security  Tue Oct 22 05:50:47 1996
Return-Path: owner-security
Received: (from root@localhost)
          by freefall.freebsd.org (8.7.5/8.7.3) id FAA26731
          for security-outgoing; Tue, 22 Oct 1996 05:50:47 -0700 (PDT)
Received: from colin.muc.de (root@colin.muc.de [193.174.4.1])
          by freefall.freebsd.org (8.7.5/8.7.3) with SMTP id FAA26715
          for <security@freebsd.org>; Tue, 22 Oct 1996 05:50:29 -0700 (PDT)
Received: from tavari.muc.de ([193.174.4.22]) by colin.muc.de with SMTP id <86020-1>; Tue, 22 Oct 1996 14:34:49 +0200
Received: from [192.168.42.51] (aleisha.tavari.muc.de [192.168.42.51]) by tavari.muc.de (8.7.5/8.7.3) with ESMTP id NAA00287; Tue, 22 Oct 1996 13:07:20 +0200 (MET DST)
X-Sender: lutz@mail
Message-Id: <v03007802ae925cb8a72c@[192.168.42.51]>
In-Reply-To: <Pine.BSF.3.91.961021134926.189B-100000@bitbucket.edmweb.com>
Mime-Version: 1.0
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
Date: Tue, 22 Oct 1996 13:15:53 +0200
To: Steve Reid <steve@edmweb.com>
From: Lutz Albers <lutz@muc.de>
Subject: Re: [bugtraq] Serious Linux Security Bug
Cc: security@freebsd.org
Sender: owner-security@freebsd.org
X-Loop: FreeBSD.org
Precedence: bulk

Steve Reid wrote on 21.10.1996
  [bugtraq] Serious Linux Security Bug


>There is no mention of the attack working against *BSD machines except for
>one person running FreeBSD 2.1.5 who reported that his Intel EtherExpress
>card stopped working for a couple of minutes.
>
>The attack is simple. From a Win95 box,
>ping -l 65510 buggyhost
>and it can crash or reboot some OSs. Very nasty.
>
>Has anyone checked the FreeBSD kernel to make sure that we're not
>vulnerable?

Just tried it from one 2.1.5R machine to another (source using a 3COM509
(ep0), target using a SMC Elite 16C (ed0)) with no problems. It did take
some time for the source machine preparing the ICMP request (machine crawls
with all caches disabled :-(

lutz


---------------------------------------------------------------------
Lutz Albers                                     |       What's good ?
Luederitzstr. 14, 81929-Muenchen, Germany       |      Life's good -
<mailto:lutz@muc.de>       ph: +49-89-93940363  | But not fair at all
<http://www.muc.de/~lutz>  fax:+49-89-93940365  |          (Lou Reed)

Do not take life too seriously, you will never get out of it alive.