IETF Finally Reacting to IPv6 Flaw?

forkb0mb.org

Calendar

Back May '13
Mon Tue Wed Thu Fri Sat Sun
    1 2 3 4 5
6 7 8 9 10 11 12
13 14 15 16 17 18 19
20 21 22 23 24 25 26
27 28 29 30 31    

Quicksearch

Categories


All categories

Archives

Blog Administration

Open login screen

IETF Finally Reacting to IPv6 Flaw?

Sunday, May 20. 2007

IETF Finally Reacting to IPv6 Flaw?

Recently at the CanSecWest conference in Vancouver a fundamental design flaw in the IPv6 protocol was exposed. The problem lies in the routing header 0 of an IPv6 packet which lets the sending party control the path of a packet, which is potentially very dangerous (for further analyses of the problem see the paper from CanSecWest here).

/*
Basically, they've gotten bit by the [loose] source routing vulnerability again. People abused it in IPv4, why think that they wouldn't in IPv6? Looks like it's just one more thing to add to the default filter set on your firewall/edge device.
*/
Posted by TJE in Networking, Unspecified, Vulnerabilities at 14:01 | Comments (0) | Trackbacks (0)

Trackbacks
Trackback specific URI for this entry

No Trackbacks

Comments
Display comments as (Linear | Threaded)

No comments

Add Comment

E-Mail addresses will not be displayed and will only be used for E-Mail notifications

To prevent automated Bots from commentspamming, please enter the string you see in the image below in the appropriate input box. Your comment will only be submitted if the strings match. Please ensure that your browser supports and accepts cookies, or your comment cannot be verified correctly.
CAPTCHA