[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [VulnWatch] Netscreen SSH1 CRC32 Compensation Denial of service

To: Erik Parker <erik.parker@xxxxxxxxxxxxxxxxxx>
Subject: Re: [VulnWatch] Netscreen SSH1 CRC32 Compensation Denial of service
From: quentyn@xxxxxxxxxxx
Date: Tue, 05 Nov 2002 11:15:52 +0000
Delivered-to: mailing list bugtraq@xxxxxxxxxxxxxxxxx
Delivered-to: moderator for bugtraq@xxxxxxxxxxxxxxxxx
Delivery-date: Sat, 09 Nov 2002 02:14:12 +0100
Envelope-to: bugtraq@xxxxxxxxxxxxxxxxxxxxxxxxxxxxx
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm
References: <Pine.LNX.4.44.0211011200460.1721-100000@xxxxxxxxxxxxxxxxxxxxxxxx>
Sender: quentyn@xxxxxxxxxxxxxxx

Erik Parker wrote:
> 
> Discovered by: HD Moore
> Products Tested: Netscreen-25 (All models expected to be vulnerable)
> Vendor contacted: October 23rd
> Vendor confirmed: October 23rd
> CVE: CVE-2001-0144 covered this bug.


4.0.0r6 is now out ( must have been in the last 24 Hrs), it claims to
address this issue


Q

-- 
#####################
Quentyn Taylor
Sysadmin - Fotango
#####################
If Microsoft made your letter box, all some one would have to do is
write "Burn the house down"
on a piece of paper and post it through the door, and your house would
go up in flames. 
   David Ruck

References:
- Netscreen SSH1 CRC32 Compensation Denial of service
  - From: Erik Parker

Prev by Date: Re: Accesspoints disclose wep keys, password and mac filter (fwd)
Next by Date: Re: Help Please
Previous by thread: RE: Netscreen SSH1 CRC32 Compensation Denial of service
Next by thread: Re: iDEFENSE Security Advisory 10.31.02a: Denial of Service Vulnerability in Linksys BEFSR41 EtherFast Cable/DSL Router
Index(es):
- Date
- Thread