|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: [Dailydave] Algorithmic Bugs
From: Matt Beaumont (mattb
cs.ucla.edu)
Date: Wed Jan 10 2007 - 14:51:48 CST
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
On Wed, Jan 10, 2007 at 12:37:11 -0500, Dave Aitel wrote:
> You can send a remarkably small stream of data at a NIDS and cause it
> to go to 100% CPU and stop doing analysis if you send the RIGHT stream
> of data.
The canonical paper is Rice and Wallach's "Denial of Service via Algorithmic
Complexity Attacks" [1], from USENIX Security '03. They also have a page [2]
with some followup work identifying specific vulnerabilities.
Cheers,
Matt
[1] http://www.cs.rice.edu/~scrosby/hash/CrosbyWallach_UsenixSec2003.pdf
[2] http://www.cs.rice.edu/~scrosby/hash/
_______________________________________________
Dailydave mailing list
Dailydavelists.immunitysec.com
http://lists.immunitysec.com/mailman/listinfo/dailydave
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]