Preface: Teardrop attackLogo -Internet Security Systems

Teardrop attack
advICE :Intrusions : 2000003
 FAQ
Oh my gosh, I'm being HACKED!!!
How do I report the hacker to my ISP?
I'm seeing lots of attacks, is this normal?
Summary

Denial of Service attempt

Details

Dangerous IP fragment overlap generated by teardrop program. Your operating system may become unstable or crash. Fixes are available for most operating systems - consult your operating system vendor for more information, or look at the CERT and Microsoft Advisories on this subject.

The source address is likely to be spoofed. This means that the sender of the frame is probably not using his actual source address, and is pretending to be someone else. Unfortunately, there is no easy way to determine who is actually sending spoofed frames.

 more information
CERT: CA-97.28.Teardrop_Land   IP Denial-of-Service Attacks
 
q154174   Microsoft Advisory
 
advICE: spoofing  
 
BugtraqID: 124   Teardrop Denial of Service Vulnerability
 

 parametric information
expectedThe expected value of the fragment offset.
offsetThe actual value of the fragment offset.
lengthThe length of the fragment.

 
Version appeared:
Privacy Policy |  Copyright Info