From owner-freebsd-hackers Thu Jun 15 11:14:31 2000 Delivered-To: freebsd-hackers@freebsd.org Received: from web805.mail.yahoo.com (web805.mail.yahoo.com [128.11.23.65]) by hub.freebsd.org (Postfix) with SMTP id 3B56837BCD1 for ; Thu, 15 Jun 2000 11:14:21 -0700 (PDT) (envelope-from jafour2@yahoo.com) Received: (qmail 6994 invoked by uid 60001); 15 Jun 2000 18:14:17 -0000 Message-ID: <20000615181417.6993.qmail@web805.mail.yahoo.com> Received: from [192.35.232.22] by web805.mail.yahoo.com; Thu, 15 Jun 2000 11:14:17 PDT Date: Thu, 15 Jun 2000 11:14:17 -0700 (PDT) From: Jaime Fournier Subject: Remote DoS exploit on natd. To: hackers@freebsd.org MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Sender: owner-freebsd-hackers@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG The other day I was testing various exploits that I have accumulated over time against my firewall. I had always used these to test any new boxes I brought online. All was fine, until I tried it from the internet side of the firewall. I have found that boink.c, the old exploit from 98, when used against a 3.3-STABLE, or 3.4-STABLE natd box that has rdr's setup with IPFILTER to cause it to panic, and reboot. I have tested this with 3 different machines, all with the same effect. I have not been able to test it on a 4.0-STABLE as of yet.I did search the mailing list archives on boink, and found nothing pertaining to this problem. It would be really nice to be able to patch this. If you need any information, or have any corrections for this, please respond to my email address at ober@bsdconspiracy.net. Thanks! __________________________________________________ Do You Yahoo!? Yahoo! Photos -- now, 100 FREE prints! http://photos.yahoo.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-hackers" in the body of the message