[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Routing loop attacks using IPv6 tunnels

To: Gabi Nakibly <gnakibly@yahoo.com>
Subject: Re: Routing loop attacks using IPv6 tunnels
From: "Rémi Denis-Courmont" <remi@remlab.net>
Date: Mon, 17 Aug 2009 19:54:06 +0300
Cc: v6ops <v6ops@ops.ietf.org>, secdir@ietf.org, ipv6@ietf.org
In-reply-to: <789539.81531.qm@web45502.mail.sp1.yahoo.com>
Organization: Remlab.net
References: <789539.81531.qm@web45502.mail.sp1.yahoo.com>
User-agent: KMail/1.12.0 (Linux/2.6.30.4; KDE/4.3.0; i686; ; )

Le lundi 17 août 2009 18:21:12 Gabi Nakibly, vous avez écrit :
> Hi all,
> I would like to draw the attention of the list to some research results
> which my colleague and I at the National EW Research & Simulation Center
> have recently published. The research presents a class of routing loop
> attacks that abuses 6to4, ISATAP and Teredo. The paper can be found at:
> http://www.usenix.org/events/woot09/tech/full_papers/nakibly.pdf

Attack E has been known for at least 2 years, though I do not have a Microsoft 
implementation to verify: http://www.remlab.net/miredo/mtfl-sa-0603.shtml.en

Note that it *does* affect Linux-based in the sense that a non-privileged 
local user could screw up (an unlikely scenario on a Teredo server, anyway).


I'm now trying to verify attack D.


-- 
Rémi Denis-Courmont
http://www.remlab.net/

Follow-Ups:
- Re: Routing loop attacks using IPv6 tunnels
  - From: Gabi Nakibly <gnakibly@yahoo.com>

References:
- Routing loop attacks using IPv6 tunnels
  - From: Gabi Nakibly <gnakibly@yahoo.com>

Prev by Date: Routing loop attacks using IPv6 tunnels
Next by Date: RE: Routing loop attacks using IPv6 tunnels
Previous by thread: Routing loop attacks using IPv6 tunnels
Next by thread: Re: Routing loop attacks using IPv6 tunnels
Index(es):
- Date
- Thread