Pantek Library

Hosting Provided By

CybrHost

High Speed Hosting

Ethernet Device Driver Vulnerability

From: Alex Kirk <alex(at)schnarff.com>
Date: Thu Jan 09 2003 - 12:08:15 EST

Sorry to be a bother if this is a non-issue, but I just saw an article on Slasdhot about many Ethernet device drivers padding small frames with previously transmitted data instead of nulls, resulting in potential sensitive information leakage; the CERT article pointed to by someone in the comments said that it was unknown in OpenBSD was vulnerable. Considering the attention to detail the OBSD developers usually pay, and the constant code auditing that happens, I suspect this was never a problem with OBSD...but I figured I'd ask, and hopefully answer the question for a lot of other people at the same time.

Thanks,
Alex Kirk Received on Thu Jan 9 12:10:22 2003

This message: [ Message body ]
Next message: Andrew Basterfield: "Re: Root's Shell"
Previous message: Waldemar Brodkorb: "Re: IPSec between OpenBSD and FreeBSD"
Reply: Don Schultz: "Re: Ethernet Device Driver Vulnerability"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]

This archive was generated by hypermail 2.1.8 : Wed Aug 23 2006 - 13:32:19 EDT

Contact Us Legal Notices Order Services Online
Pantek Home Privacy Policy IT news Site Map Pantek Library