IPFW ECE Firewall Bypassing Exploit
Dmitry Surovtsev
sd at buc.com.ua
Wed Apr 14 06:09:16 PDT 2004
Thanks,
that's right, ouhh ;-)
i do not know why securiteam.com/ dated it _14 Apr 2004_.
Devon H. O'Dell wrote:
> Dmitry Surovtsev wrote:
>
>> securiteam news (http://www.securiteam.com/exploits/5CP0B0UCKU.html):
>>
>> A vulnerability in FreeBSD's implementation of packet filtering for IPv4
>> and IPv6 has been found. The vulnerability allows specially crafted
>> packets that are not part of an established connection to go through the
>> firewall. These special packets must have the ECE flag set, which is in
>> the TCP reserved options field.
>>
>> [snip]
>
>
> Hello Dmitry,
>
> This bug was fixed circa three years ago. Please see the date on the
> exploit.
>
> Kind regards,
>
> Devon H. O'Dell
>
>
More information about the freebsd-ipfw
mailing list