Linux 2.2.x Masquerading Exploits: SecurityFocus
Submitted by charlie.collins on Fri, 04/28/2000 - 11:16
Tagged:
Lookout, IP masquerading in the 2.2.x kernels has some exploitation possibilities. It turns out that UDP masquerading can be used to create a tunnel INTO the masq machine and thus the internal network. This requires the successful takeover of UDP ports used in the masquerade, but as the article points out, it is not too terribly difficult to determine those ports. Currently there is not much of a real solution other than "disable UDP masquerading."
Check the securityFocus article and note that securityFocus is a mighty fine site. Linux 2.2.x Masquerading Exploits: SecurityFocus
Recent comments
22 weeks 6 hours ago
22 weeks 18 hours ago
24 weeks 4 days ago
25 weeks 2 days ago
25 weeks 2 days ago
25 weeks 2 days ago
29 weeks 6 days ago
30 weeks 10 hours ago
30 weeks 3 days ago
30 weeks 5 days ago