.:: Blackc0de Forum ::.
Would you like to react to this message? Create an account in a few clicks or log in to continue.

-=Explore The World From Our Binary=-
 
HomeIndeksLatest imagesPendaftaranLogin

 

 Remote openbsd crash with ip6

Go down 
PengirimMessage
Guninski
NuuBiiTooL
NuuBiiTooL



Jumlah posting : 6
Points : 18
Reputation : 0
Join date : 15.01.12

Remote openbsd crash with ip6 Empty
PostSubyek: Remote openbsd crash with ip6   Remote openbsd crash with ip6 Icon_minitimeSun Jan 15, 2012 11:57 pm

Remote openbsd crash with ip6, yet still openbsd much better than windows

Systems affected:
tested on openbsd 3.4
not clear about netbsd
freebsd not vulnerable

Risk: Medium
Date: 4 February 2004

Legal Notice:
This Advisory is Copyright (c) 2004 Georgi Guninski.
You may distribute it unmodified.
You may not modify it and distribute it or distribute parts
of it without the author's written permission - this especially applies to
so called "vulnerabilities databases" and securityfocus, microsoft, cert
and mitre.
If you want to link to this content use the URL:
[You must be registered and logged in to see this link.]
Anything in this document may change without notice.

Disclaimer:
The information in this advisory is believed to be true though
it may be false.
The opinions expressed in this advisory and program are my own and
not of any company. The usual standard disclaimer applies,
especially the fact that Georgi Guninski is not liable for any damages
caused by direct or indirect use of the information or functionality
provided by this advisory or program. Georgi Guninski bears no
responsibility for content or misuse of this advisory or program or
any derivatives thereof.

Description:
It is possible to remotely crash openbsd 3.4 if the host receives icmpv6
and there is a listening tcp port.
quoting de raadt: "it is just a crash."
remote crash which screws the kernel.
unknown whether this may be exploited for code execution.

Details:
The problem is triggered by setting small ipv6 mtu and then doing tcp
connect.
How to reproduce:
Patch linux kernel 2.4.24 net/ipv6/icmp.c :

case ICMPV6_ECHO_REPLY:
/* we coulnd't care less */
icmpv6_send(skb, ICMPV6_PKT_TOOBIG, 0, 68, skb->dev); //joro

then:
ping6 openbsd
ssh -6 openbsd

Workaround:
It is believed that openbsd current is not vulnerable.
netbsd current also seems to have related changes.
check:
[You must be registered and logged in to see this link.]

Vendor status:
open, net and free bsd were notified Sun, 1 Feb 2004 16:35:56 +0200

Georgi Guninski
Kembali Ke Atas Go down
 
Remote openbsd crash with ip6
Kembali Ke Atas 
Halaman 1 dari 1
 Similar topics
-
» OpenBSD 4.9 Release
» Remote Connection (Interactive Console)
» mozilla crash
» cara megatasi crash mozila
» Counter-Strike 1.6 No Steam Crash Exploit

Permissions in this forum:Anda tidak dapat menjawab topik
.:: Blackc0de Forum ::. :: BoarD Blackc0de :: International Room :: Hacking & Security (Int.)-
Navigasi: