HP-UX ICMP PMTUD Remote Denial Of Service Vulnerability

Path MTU Discovery (PMTUD) functionality is supported within the ICMP protocol.

An attack against ICMP PMTUD is reported to affect HP-UX IPV4-based platforms. By sending a suitable forged ICMP message to a target host (Type 3, code 4 Fragmentation needed and DF bit set for IPV4 networks), an attacker may reduce the MTU for a given connection.

A remote attacker may exploit this issue to degrade the performance of TCP connections and partially deny service for legitimate users.


Privacy Statement
Copyright 2010, SecurityFocus