Slashdot Mirror


Flaw Found iIn Ethernet Device Drivers

Licensed2Hack writes "Security researchers have discovered a serious vulnerability that may be present in many Ethernet device drivers that is causing the devices to broadcast sensitive information over networks. Seems the device driver writers couldn't be bothered with a memset() call. Eweek has their typical (puffy, low on tech details) take on it here. Since they don't specify the OS, I'm assuming these are drivers for Windows." It's actually Linux, *BSD, and Windows.

4 of 390 comments (clear)

  1. Surprise by billybob2001 · · Score: -1, Redundant

    Flaw Found iIn Slashdot Headlines!

    Dictionary on the present list for this December!

  2. Flaws iln the Headline Too! by goldspider · · Score: -1, Redundant

    Really, it's the headline for Christ's sake!

    --
    "Ask not what your country can do for you." --John F. Kennedy
  3. At least read it before you post it by pvera · · Score: -1, Redundant

    Is it really that hard to read an article before writing a small blurb and posting it?

    --
    Pedro
    ----
    The Insomniac Coder
  4. Linux, NetBSD and windows. by ViVeLaMe · · Score: -1, Redundant
    Seems like on slashdot, even the one who fscking SUBMIT the story can't be bothered to read it.
    Amazing...

    "This information leakage vulnerability is trivial to exploit and has potentially devastating consequences. Several different variants of this implementation flaw result in this vulnerability," the @stake researchers wrote in their paper on the flaw, released Monday. "The Linux, NetBSD and Microsoft Windows operating systems are known to have vulnerable link layer implementations, and it is extremely likely that other operating systems are also affected."
    --
    i had a sig, once..