Bugtraq mailing list archives

Re: Blind IP Spoofing Attacks.

From: newsham () aloha net (Timothy Newsham)
Date: Wed, 25 Jan 1995 10:01:06 -1000 (HST)

sequence number attacks because UDP doesn't have sequence numbers.  To
the extent that RPC services are provided over TCP, they are vulnerable
to the sequence number attack.


But what TCP RPC services could you exploit without seeing return traffic?
The only ones that I could think of could be attacked *much* more
efficiently with UDP equivalents (since you can spoof UDP 100% of them
time but TCP sequence number guessing only a small fraction of the time).

                                      der Mouse
                          mouse () collatz mcrcim mcgill edu

Current thread:

Blind IP Spoofing Attacks. Timothy Newsham (Jan 24)
- Re: Blind IP Spoofing Attacks. Perry E. Metzger (Jan 24)
- <Possible follow-ups>
- Re: Blind IP Spoofing Attacks. LaCoursiere J. D. (Jan 24)
  - Re: Blind IP Spoofing Attacks. Casper Dik (Jan 25)
- Re: Blind IP Spoofing Attacks. Justin Mason (Jan 25)
  - Re: Blind IP Spoofing Attacks. Timothy Newsham (Jan 25)
- Re: Blind IP Spoofing Attacks. der Mouse (Jan 25)
  - Re: Blind IP Spoofing Attacks. Timothy Newsham (Jan 25)