OSEC

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com
 
Subject: Remote Dos attack against Intel express 8100 router
From: Dimuthu Parussalla (dparussallaBAYSIDEGRP.COM.AU)
Date: Thu May 18 2000 - 20:13:28 CDT


Remote Dos attack against Intel express 8100 router
---------------------------------------------------

Intel express 8100 isdn router vulnerable for remote icmp fragmented packets
and oversize packets.

exploit demonstrate as follows..

Download libnet and isic-0.05 test following exploit. And do the following
command to generate oversized and fragmented packets.

./icmpsic -s 127.0.0.1,23 -d <target.router.ip.address> -F 100

After a couple of minutes router hangs.

No patch from the vendor yet