IPFW ECE Firewall Bypassing Exploit
Devon H. O'Dell
dodell at offmyserver.com
Wed Apr 14 04:27:23 PDT 2004
Dmitry Surovtsev wrote:
> securiteam news (http://www.securiteam.com/exploits/5CP0B0UCKU.html):
>
> A vulnerability in FreeBSD's implementation of packet filtering for IPv4
> and IPv6 has been found. The vulnerability allows specially crafted
> packets that are not part of an established connection to go through the
> firewall. These special packets must have the ECE flag set, which is in
> the TCP reserved options field.
>
> [snip]
Hello Dmitry,
This bug was fixed circa three years ago. Please see the date on the
exploit.
Kind regards,
Devon H. O'Dell
More information about the freebsd-ipfw
mailing list