full-disclosure-uk January 2009 archive
Main Archive Page > Month Archives  > full-disclosure-uk archives
full-disclosure-uk: Re: [Full-disclosure] Exploitation of unused

Re: [Full-disclosure] Exploitation of unused IPv6-capabilities

From: <A.L.M.Buxey_at_nospam>
Date: Sun Jan 18 2009 - 21:53:32 GMT
To: "Lukas Th. Hey" <hey@cmkr.nl>


Hi,
> Hi folks,
>
> while playing around I had an idea for some "new kind of mitm" which
> works quite well here.

do you mean like:

http://tools.ietf.org/html/draft-chown-v6ops-rogue-ra-02 http://www.tml.tkk.fi/~pnr/publications/WiSe2002-Arkko.pdf

yes, we're aware of the issues for some time now.

mitigation via things like private VLAN isolation

alan



Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/