Security Basics mailing list archives

Re: VALN hopping

From: David Barroso <dbarroso () s21sec com>
Date: Wed, 5 Oct 2005 21:25:48 +0200

On Wed, 05 Oct 2005, Joshua Berry wrote:

VLAN's can certainly be bypassed as long as they are not setup properly.
@stake did a security review of VLAN's which can be found here:
http://www.cisco.com/warp/public/cc/pd/si/casi/ca6000/tech/stake_wp.pdf

And cisco has their own documentation on it here:
http://www.cisco.com/warp/public/cc/pd/si/casi/ca6000/prodlit/vlnwp_wp.p
df

These outline potential problems and their solutions.  I would be a
little skeptical if it was only Cisco doing the research into VLAN
exploitation but I am a little more comfortable since @stake did
research into it as well.


Yes, but the research date is August 2002. Three years is more than enough
time for changes.

Current thread:

RE: VALN hopping Bryan S. Sampsel (Oct 03)
- <Possible follow-ups>
- Re: VALN hopping Micheal Espinola Jr (Oct 03)
- RE: VALN hopping Craig Wright (Oct 04)
- RE: VALN hopping Steve McLaughlin (Oct 05)
  - Re: VALN hopping David Barroso (Oct 06)
- RE: VALN hopping Joshua Berry (Oct 06)
- RE: VALN hopping Joshua Berry (Oct 06)
  - Re: VALN hopping David Barroso (Oct 06)