CERT. Denial-of-service attack via ping. Advisory CA--1996.  Home/Search   Document Not in Database   Summary   Related Articles   Check

....2.1.5 ICMP and IGMP packets ICMP (Internet Control and Management Protocol) and IGMP (Internet Group Management Protocol) packets are used for sending control and management information about connections. They can be used to perpetrate denial of service attacks such as the ping of death [15]. ICMP can also be abused to allow scanning of a network [16] Possible information that can be acquired from such a scan includes remote operating system type, remote network topology, and the existence of a remote host, this is called enumeration. ICMP messages can be grouped into two classes: ....

CERT Advisory CA-1996-26, "Denial-of-service attack via ping". http://www.cert.or g/advisorie s/CA- 1996-26.html

....is well formed is taken for granted because it was formed by another part of the operating system, which is trusted . Packets that are intentionally constructed t o be malicious may exploit loopholes. One conspicuous example of this was the Ping Internet exploit (also called The Ping of Death [13]) that could crash a remote machine simply by sending a specially constructed packet to it. There are no automatic mechanical checks. Essentially, we trust the programmer who implemented the network protocol stack of the operating system. Such problems would vanish in a system that took a typed ....

CERT Advisory CA-1996-26. Denial-of-service attack via ping. http://www.cert.org/advisories/CA-1996-26.html. October 1996.

.... safe manual memory management Tagged unions support type varying arguments Injections help automate the use of tagged unions for programmers Polymorphism replaces some uses of void Varargs are implemented with fat pointers Exceptions replace some uses of setjmp and longjmp attacks [6, 7, 12, 15, 25, 16]. NULL Consider the getc function: int getc(FILE ) If you call getc(NULL) what happens The C standard gives no de nitive answer. If getc is written with safety in mind, it will perform a NULL check on its argument. That would be inecient in the common case, though, so the check is probably ....

CERT. Denial-of-service attack via ping. Advisory CA{1996-26, December 18, 1996. http://www.cert.org/advisories/ CA-1996-26.html.

....of optional information, with the rest of the packet being data. It is known that some systems will react in an unpredictable manner when receiving oversized IP packets. Reports indicate a range of reactions including crashing, freezing, and rebooting. In particular, the reports received by [6] indicate that ICMP packets issued via the ping command have been used to trigger this behavior. Most implementations of ping will not allow an invalid datagram like this to be sent. Among the exceptions are Windows 95 and Windows NT, although they are certainly not the only ones. An echo message ....

http://www.cert.org/, CA-96.26 Denial-of-Service Attack via ping, CERT Coordination Center, 1996

....offending program, or sending messages to the superuser according to a defined policy, is signaled by the filter whenever a tentative attack is detected. Among the most (in)famous and disruptive network attacks are Denial of Service attacks such as SYN flood [7] Smurf [13] Ping of Death [8], Land [9] Teardrop [9] Blocking this type of attacks at the target is expensive and resource consuming, both in terms of network bandwidth and CPU time. The common feature of all these attacks is the lack of strong authentication of the source address in IP packets that allows forged source ....

CERT-CC, "Denial of service attack via ping," CERT Advisory CA-96.26, http://www.cert.org, 1996-97.

....as well as a variety of other attacks such as traffic analysis. We note that since the resource model in the routers is so simple, sophisticated threats are posed by attacks on services implemented at the endpoints, e.g. the notorious Syn Ack attack [11] on TCP IP and the Ping of Death [12]. Active Networks, being more flexible, considerably expand the threat possibilities. The security threats faced by such elements are considerable. For example, when a packet containing code to execute arrives, the system typically must: ffl Identify the sending network element ffl Identify the ....

"Cert advisory ca-96.26: Denial-of-service attack via ping," ftp://info.cert.org/pub/cert advisories/CA-96.26.ping, October 1996.

....other attacks such as traffic analysis. We note that since the resource model in the routers is so simple, sophisticated threats are posed by attacks on services implemented at the endpoints, e.g. the notorious Syn Ack (also known as Synflooding ) attack [21] on TCP IP and the Ping of Death [22]. Active Networks, being more flexible, considerably expands the threat possibilities. The security threats faced by such elements are considerable. For example, when a packet containing code to execute arrives, the system typically must: ffl Identify the sending network element, ffl Identify ....

"Cert advisory ca-96.26: Denial-of-service attack via ping," ftp://info.cert.org/pub/cert advisories/CA-96.26.ping, October 1996.

....[52] bases its decision on a sensor that keeps track of connections to ports and reports their number and sources. In other cases, the internal sensor is implicitly built into the embedded detector and its value is immediately used to take a decision. For example, a detector for a Ping ofdeath [16] attack can check the size of a ping packet by comparing a variable against a certain threshold and emitting an alert if it is larger. In this case, the conceptual sensor would be the act of reading the value of the variable, and the detector portion would be the comparison of the value ....

CERT Coordination Center. Denial-of-service attack via ping. CERT Advisory CA-1996-26, Computer Emergency Response Team, December 1996. URL http: //www.cert.org/advisories/CA-1996-26.html.

No context found.

CERT. Denial-of-service attack via ping. Advisory CA--1996.

Online articles have much greater impact   More about CiteSeer.IST   Add search form to your site   Submit documents   Feedback  

CiteSeer.IST - Copyright Penn State and NEC