[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[ale] TCP Sequence Number Approximation Vulnerability

Subject: [ale] TCP Sequence Number Approximation Vulnerability
From: cfowler at outpostsentinel.com (Chris Fowler)
Date: Wed, 16 Mar 2011 11:30:08 -0400
In-reply-to: <[email protected]>
References: <1300279398.427.156.camel@cfowler-desktop> <[email protected]> <[email protected]>

In this case the device is an embedded Linux device and the scan was
done externally.  Most of their issues I've addressed using IP tables
and blocking their access to the web server.

I could upgrade the kernel up to the last version of 2.4 but can not go
into 2.6.  This device will not support it but I'm working on a new
device.

I'm having not much luck finding out if the 2.4.X or even the 2.6.X
kernel addresses the issue their scanner is seeing.

Chris

Follow-Ups:
- [ale] TCP Sequence Number Approximation Vulnerability
  - From: mhw at WittsEnd.com (Michael H. Warfield)

References:
- [ale] TCP Sequence Number Approximation Vulnerability
  - From: cfowler at outpostsentinel.com (Chris Fowler)
- [ale] TCP Sequence Number Approximation Vulnerability
  - From: chip.gwyn at gmail.com (chip)
- [ale] TCP Sequence Number Approximation Vulnerability
  - From: jlightner at water.com (Lightner, Jeff)

Prev by Date: [ale] TCP Sequence Number Approximation Vulnerability
Next by Date: [ale] TCP Sequence Number Approximation Vulnerability
Previous by thread: [ale] TCP Sequence Number Approximation Vulnerability
Next by thread: [ale] TCP Sequence Number Approximation Vulnerability
Index(es):
- Date
- Thread