Worst-case impact is a DOS.
Thanks for LEAF! scott; canada
details: http://www.us-cert.gov/cas/techalerts/TA04-111A.html
from: http://www.securityfocus.com/news/8499
[...]
Routers running Border Gateway Protocol (BGP) are most severely affected by the vulnerability because the protocol relies on a persistent TCP session between BGP peers. These sessions, though easily restarted, could be disrupted as a result of the flaw. Other application protocols such as DNS (Domain Name System) and SSL (Secure Sockets Layer) are potentially vulnerable but to a lesser extent than BGP. [...] Also, the attack does not directly compromise data integrity or confidentiality. The worst aspect of the problem is that a huge range of networking kit (firewalls, switches, and routers) from multiple vendors need attention.
from: http://www.cisco.com/warp/public/707/cisco-sa-20040420-tcp-ios.shtml
Summary
A vulnerability in the Transmission Control Protocol (TCP) specification (RFC793) has been discovered by an external researcher. The successful exploitation enables an adversary to reset any established TCP connection in a much shorter time than was previously discussed publicly. Depending on the application, the connection may get automatically re-established. In other cases, a user will have to repeat the action (for example, open a new Telnet or SSH session). Depending upon the attacked protocol, a successful attack may have additional consequences beyond terminated connection which must be considered. This attack vector is only applicable to the sessions which are terminating on a device (such as a router, switch, or computer) and not to the sessions that are only passing through the device (for example, transit traffic that is being routed by a router). In addition, this attack vector does not directly compromise data integrity or confidentiality.
[...]
------------------------------------------------------- This SF.Net email is sponsored by: IBM Linux Tutorials Free Linux tutorial presented by Daniel Robbins, President and CEO of GenToo technologies. Learn everything from fundamentals to system administration.http://ads.osdn.com/?ad_id=1470&alloc_id=3638&op=click ------------------------------------------------------------------------ leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
