 |
|
|
|
| Name: | CISCO : Catalist 4000 |
|
| 7! | TCP RST packets spoofing
updated since 21.04.2004
|  | | By sending spoofed RST it's possible to terminate established TCP connection. unlike TPC hijacking attacks there is no need for exact TCP sequence number, and number can be any number from handshaked TCP window. It significantly increases attack efficiency. In NetBSD sequence number for RST is not checked at all, it makes it possible to terminate session with single packet. |
| | |
|
|
|
|
|
|
|
|
