FreeBSD Security Advisory FreeBSD-SA-14:19.tcp
Steven Chamberlain
steven at pyro.eu.org
Tue Sep 16 14:10:50 UTC 2014
On 16/09/14 15:00, Xin Li wrote:
> By default RST has to be within the window if the connection is in
> ESTABLISHED state. So in order to do that the attacker still need to
> guess or know the sequence number.
Thanks, I didn't know that; that must be how a router or MITM attacker
is able to do that so easily.
Whereas, the attack described in this advisory could work blindly
against two remote endpoints. I believe I understand now.
Regards,
--
Steven Chamberlain
steven at pyro.eu.org
More information about the freebsd-security
mailing list