5074533 2000-05-08  21:29  /52 rader/ Postmaster
Mottagare: Bugtraq (import) <10792>
Ärende: Ipchains!
------------------------------------------------------------
Approved-By: aleph1@SECURITYFOCUS.COM
Delivered-To: bugtraq@lists.securityfocus.com
Delivered-To: BUGTRAQ@SECURITYFOCUS.COM
MIME-Version: 1.0
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: 7bit
X-Priority: 3 (Normal)
X-MSMail-Priority: Normal
X-MimeOLE: Produced By Microsoft MimeOLE V4.72.3110.3
Importance: Normal
Message-ID:  <001301bfb889$d1e5c570$d801a8c0@dimuthu.baysidegrp.com.au>
Date:         Mon, 8 May 2000 11:07:42 +1000
Reply-To: dparussalla@baysidegrp.com.au
Sender: Bugtraq List <BUGTRAQ@SECURITYFOCUS.COM>
From: Dimuthu Parussalla <dparussalla@baysidegrp.com.au>
X-To:         BUGTRAQ@SECURITYFOCUS.COM
To: BUGTRAQ@SECURITYFOCUS.COM

Ipchains buffer overflow with debian 2.2.10 Kernel.
--------------------------------------------------

there is a buffer overflow hang in linux debian distributin kernel
2.2.10 with ipchains 1.3.8, 27-Oct-1998.

here is the explanation.


We tested with a linux running with debian above version of kernel
and ipchains. first we setup the linux box to handle IP Masquerading
as follows.

ipchains -A forward -j MASQ -s 192.168.0.0/16


Then from a local workstation within the 192.168.0.0 network. We ssh
to the linux box. and did the following

$ping -f <ip.address>

And we opend a another ssh session to the linux box and did the
following

$ping -l 6512121 <ip.address>


After a few minutes. Ipchains hangs and the linux server hangs..


Ipchains-patch.gz will fix the problem.

----------------------
THE UNDERTAKER -> EFNET -> REAL CRACKING

!!!REST IN PACE!!!!
(5074533) ------------------------------------------(Ombruten)