Comments on: SockStress – TCP/IP Vulnerability http://www.abeontech.com/security/147/sockstress-tcp-ip-vulnerability Abeon Tech is a technology blog aimed at Geeks, Webmasters and tech addicts. My articles include Security, Design, SEO, Gaming and Tech Tips! Sun, 10 Jan 2010 02:02:50 +0000 hourly 1 http://wordpress.org/?v=3.0 By: Abe http://www.abeontech.com/security/147/sockstress-tcp-ip-vulnerability/comment-page-1#comment-23 Abe Sat, 11 Oct 2008 10:04:15 +0000 http://www.abeontech.com/?p=147#comment-23 It's a little more serious than most people think, as it affects any computer with the TCP stack reachable from the outside world..... This includes services with a router or any open ports to the outside world! (routers having BGP open for routing tables!) All versions of the stack are vulnerable to some degree using slightly different methods. But, according to the Outpost24 team, they are all vulnerable. Even load-balanced servers have been used as targets by the team. The servers farms behind these servers could, in theory, be flooded. This attack is very similar to the 1st ever Dos attack (syn flood). But this attack starts after the TCP connection has been established and syn cookie is sent and acknowledged. It’s a little more serious than most people think, as it affects any computer with the TCP stack reachable from the outside world…..

This includes services with a router or any open ports to the outside world! (routers having BGP open for routing tables!)

All versions of the stack are vulnerable to some degree using slightly different methods. But, according to the Outpost24 team, they are all vulnerable.

Even load-balanced servers have been used as targets by the team. The servers farms behind these servers could, in theory, be flooded.

This attack is very similar to the 1st ever Dos attack (syn flood). But this attack starts after the TCP connection has been established and syn cookie is sent and acknowledged.

]]> By: jgoto http://www.abeontech.com/security/147/sockstress-tcp-ip-vulnerability/comment-page-1#comment-22 jgoto Fri, 10 Oct 2008 19:19:01 +0000 http://www.abeontech.com/?p=147#comment-22 Great post, Scary news for anyone hosting a server. Great post, Scary news for anyone hosting a server.

]]>