Multiple Vendor TCP/IP Implementation ICMP Remote Denial Of Service Vulnerabilities

Multiple Vendor TCP/IP Implementation ICMP Remote Denial Of Service Vulnerabilities

References:

[ BULLETIN ] Vulnerability Issues in ICMP packets with TCP payloads (Nortel Networks)
Avaya security advisory ASA-2006-217 (Avaya)
AX-VU2005-01 : TCP/IP implementations do not adequately validate ICMP error mess (ALAXALA Networks)
BigIP Product Information (F5 Software)
Cisco Security Advisory: Crafted ICMP Messages Can Cause Denial of Service (Cisco)
CVS commit for PMTUD (OpenBSD)
CVS commit to disable ICMP Source Quench for TCP connections (OpenBSD)
ICMP attacks against TCP (F. Gont)
ICMP Packet Filtering v1.2 (Rob Thomas)
IY70026: ATTACKS AGAINST TCP VIA ICMP (IBM)
Microsoft Security Bulletin MS05-019 (Microsoft)
Microsoft Security Bulletin MS06-064 (Microsoft)
NISCC Vulnerability Advisory 531967/NISCC/ICMP (NISCC)
OpenBSD 3.8 Release (OpenBSD)
RHSA-2005:043-13 - Updated kernel packages fix security vulnerabilities (RedHat)
Security Advisory: ICMP Error Message Vulnerabilities (Blue Coat Systems)
Solution ID: SOL4583 (F5 Software)
Solution ID: SOL4584 (F5 Software)
SSRT4743, SSRT4884 rev.0 - HP Tru64 (HP)
Sun Alert ID: 101658 (formerly 57746) : Sun TCP Connections May Experience Perfo (Sun)
Sun Alert ID: 57746 - Sun TCP Connections May Experience Performance Degradation (Sun)
SYM05-008 - Symantec security gateway ICMP potential Denial of Service (Symantec)
Technical Cyber Security Alert TA04-111A (US-CERT)
UnixWare 7.1.4 Maintenance Pack 2 (SCO)
Vulnerability Note VU#222750 - Multiple TCP/IP implementations do not adequately (US-CERT)
Vulnerability Note VU#415294 (CERT/CC)
ICMP vulnerabilities (Theo de Raadt )
ICMP-based blind connection-reset attack (Fernando Gont )
ICMP-based blind performance-degrading attack (Fernando Gont )
Trivial BGP attacks (ICMP-based blind throughput-reduction attack) (Fernando Gont )