ICMP attacks against TCP - Tools released

Posted by Jonathan

In a previous post I’ve written about the ICMP attacks against TCP that Fernando Gont published.

After a long discussion on full-disclosure Fernando released some tools that show how trivial these attacks are. From the website:

icmp-quench – Blindliy reducing the throughput of an arbitrary TCP connections (icmp-quench.tar.gz).
My post to bugtraq and full-disclosure on this tool (buqtraq-icmp-quench.txt).


icmp-mtu – Blindliy reducing the perormance of an arbitrary TCP connections (icmp-mtu.tar.gz).
My post to bugtraq and full-disclosure on this tool (buqtraq-icmp-mtu.txt).

Using these tools is very easy, see the posts to bugtraq and full-discluse for the details. Good to know that OpenBSD already incorporates fixes against the attacks.

Comments

Leave a response

  1. joeJuly 21, 2005 @ 02:31 AM
    Makes me feel better my OpenBSD soekris firewall is protecting me at home. :) If other Operating Systems don't get the fix out you think we will see these vulnerabilities exploited in a new DDoS tool?
  2. JonathanJuly 21, 2005 @ 10:23 AM
    The tools released by Fernondo make it very easy to exploit these vulnerabilities. He released them in order to show how vulnerable many systems are as after the discussion on full-disclore many vendors still did not react.

    In this article Fernando explains what you can arcive with these vulnerabilites:
    http://kerneltrap.org/node/5382

    If you mess up with BGP between ISPs it is very easy to take one of them offline...