12 Mar
2001
12 Mar
'01
9:50 a.m.
In message <87hf0z59qe.fsf@lackawana.kippona.com>, Chris Beggy writes:
tcp,guardent,bellovin are all mentioned in a WSJ article on DOS and session hijacking, but I don't see anything on CERT yet.
Any details? Any incidents using the exploit guardent has identified?
Not to my knowledge... The folks at Guardent are talking to CERT and to various vendors about the problem before releasing any details. --Steve Bellovin, http://www.research.att.com/~smb