Back to list
*Note: Email address will appear as "user domain ext" to prevent harvesting.
Re: Windows Server 2003 and XP SP2 LAND attack vulnerability
Mar 08 2005 05:42AM
Patrick Chipman (pchipman memphis edu)
I can replicate this using hping2 on a Linux 2.2.19 box targeting a Windows
XP SP2 box (fully patched) with no firewall active on the same subnet. The
packet sent has the SYN flag set (-S) and a spoofed source address (-a). The
source and destination ports must be the same and open on the target ...
[ more ]
Copyright 2010, SecurityFocus