Date: Mon, 21 Oct 1996 16:00:20 -0600 (MDT) From: Brandon Gillespie <brandon@glacier.cold.org> To: Steve Reid <steve@edmweb.com> Cc: security@freebsd.org Subject: Re: [bugtraq] Serious Linux Security Bug Message-ID: <Pine.NEB.3.95.961021155902.164A-100000@glacier.cold.org> In-Reply-To: <Pine.BSF.3.91.961021134926.189B-100000@bitbucket.edmweb.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Mon, 21 Oct 1996, Steve Reid wrote: > This has been discussed on the Bugtraq list for a few days now, but I > haven't seen any talk of it here. > > There is no mention of the attack working against *BSD machines except for > one person running FreeBSD 2.1.5 who reported that his Intel EtherExpress > card stopped working for a couple of minutes. > > The attack is simple. From a Win95 box, > ping -l 65510 buggyhost > and it can crash or reboot some OSs. Very nasty. > > Has anyone checked the FreeBSD kernel to make sure that we're not > vulnerable? I just tried this (from w95) against a FreeBSD 2.1.5 box and a 2.1.0 box, both had no problems. Of course, I'm not sure if the ping ran correctly, it returned: Request timed out. Instead. It does work without the '-l 65510' args. -Brandon
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.NEB.3.95.961021155902.164A-100000>