jetlib.sec » Bugtraq » Reflection Scan: an Off-Path Attack on TCP

Feeds

132963 items (0 unread) in 27 feeds

• 1337day (was: Inj3ct0r, 1337db)
• OSVDB Vulnerabilities
• Exploit-DB
• SecurityFocus Vulnerabilities
• Bugtraq
• Full Disclosure
• XSSed
• Packet Storm Security Headlines
• Packet Storm Security Advisories
• Packet Storm Security Exploits
• Packet Storm Security Recent Files
• Packet Storm Security Tools
• Packet Storm Security Misc. Files
• Sophos security news
• Sophos product advisories
• Penetration Testing
• SecuriTeam
• BackTrack Linux Forums
• Threatpost
• SecDocs
• carnal0wnage.attackresearch.com
• Carnal0wnage
• Kernel Fun
• Darknet
• The Exploitant
• Hack a Day
• Wirevolution

Bugtraq

• January 18, 2012
• 

  Reflection Scan: an Off-Path Attack on TCP

  Posted: January 18th, 2012, 8:22am PST

  Tags:   

  Posted by Jan Wrobel on Jan 18

  Hi,
  
  This TCP session hijacking technique might be of interest to some of you.
  
  Abstract:
  The paper demonstrates how traffic load of a shared packet queue can
  be exploited as a side channel through which protected information
  leaks to an off-path attacker. The attacker sends to a victim a
  sequence of identical spoofed segments. The victim responds to each
  segment in the sequence (the sequence is reflected by the victim) if
  the segments satisfy a...