Thursday, October 2, 2008

TCP/IP Design Vulnerabiltiy that Effects Almost All OS

Sockstress vulnerabilities in TCP/IP will collapse internets! [minn.tc]

It looks like a vulnerability similar to the DNS crisis.  Someone seems to have found a way to exploit a SYN-cookie type packet and cause the host server to buffer overload its outbound queue stack and get the machine/ service to reboot with only 10-15 packets a minute.  Now script kiddies don't need to have a massive botnet to take down Yahoo/ Google, only the knowledge of this exploit.