Microsoft, Cisco Finally Patch TCP DoS Flaw

Posted by kdawson on Tuesday September 8, 2009 @09:30AM from the who-needs-a-botnet dept.

Trailrunner7 writes "Today vendors are finally releasing patches for the TCP vulnerabilities first publicized nearly a year ago that affect a huge range of networking products, including any device running a version of Cisco's IOS software, and a number of Microsoft server and desktop operating systems. Both Microsoft and Cisco released fixes for the vulnerabilities today. The Microsoft Patch Tuesday release included the fix for the TCP flaw, which affects Windows Server 2003 and 2008, as well as Windows Vista, both the 32-bit and 64-bit editions, and Windows 2000 SP4, for which no fix is coming. The TCP flaws were identified several years ago and were made public last year by two researchers at Outpost24, Jack C. Louis and Robert E. Lee. Louis, who has since died, developed a tool called Sockstress that tested for the flaw and was able to maintain extremely long-term TCP connections with remote machines using very little bandwidth."

3 of 114 comments (clear)

Min score:

Reason:

Sort:

Re:very, very old vulnerability by palegray.net · 2009-09-08 09:44 · Score: 0, Offtopic

It must have taken an army of coders to fix these flaws.

--
512 MB RAM, 20 GB disk, 200 GB transfer, five datacenters. $19.95/month.
Re:cotton bots, sand bots, rice bots by Nethead · 2009-09-08 10:57 · Score: 1, Offtopic

Kill all humans!

--
-- I have a private email server in my basement.
Re:cotton bots, sand bots, rice bots by Tubal-Cain · 2009-09-08 12:49 · Score: 0, Offtopic

Let's not. They're entertaining.