Re: Linux 2.2.x ISN Vulnerability

kuznet@ms2.inr.ac.ru
Sun, 26 Sep 1999 21:42:10 +0400 (MSK DST)

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Hamfast Istar: "Re: Linux 2.2.x ISN Vulnerability"
Previous message: Andrea Arcangeli: "Re: Linux 2.2.x ISN Vulnerability"

Hello!

> 16:23:02.727540 attacker.522 > victim.ssh : S 446679473: 446679473(0)
> 16:23:02.728371 victim.ssh > attacker.522: S 3929852318:3929852318(0)
> 16:23:02.734448 11.11.11.11.522 > victim.ssh: S 446679473: 446679473(0)
> 16:23:02.734599 victim.ssh > 11.11.11.11.522: S 3929859164:3929859164(0)

Damn!

Alexey

--- ../orig/linux/net/ipv4/tcp_ipv4.c Thu Aug 12 17:51:37 1999
+++ linux/net/ipv4/tcp_ipv4.c Sun Sep 26 21:38:07 1999
@@ -525,7 +525,8 @@

static inline __u32 tcp_v4_init_sequence(struct sock *sk, struct sk_buff *skb)
{
- return secure_tcp_sequence_number(sk->saddr, sk->daddr,
+ return secure_tcp_sequence_number(skb->nh.iph->daddr,
+ skb->nh.iph->saddr,
skb->h.th->dest,
skb->h.th->source);
}

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.rutgers.edu
Please read the FAQ at http://www.tux.org/lkml/

Next message: Hamfast Istar: "Re: Linux 2.2.x ISN Vulnerability"
Previous message: Andrea Arcangeli: "Re: Linux 2.2.x ISN Vulnerability"