Date: Wed, 17 Jun 2009 13:41:47 +0300 (EEST)
From: Juha-Matti Laurio <juha-matti.laurio@netti.fi.>
To: bugtraq@securityfocus.com
Subject: CERT-FI statement on the Outpost24 TCP issues updated
MIME-Version: 1.0
Content-Type: text/plain; Charset=iso-8859-1; Format=Flowed
Content-Transfer-Encoding: 7bit
X-Mailer: Saunalahti webmail - http://saunalahti.fi
X-Originating-IP: 194.197.118.139
X-Virus-Scanned: antivirus-gw at tyumen.ru
>From the statement:
"June 15 2009
In the issue #66 of the Phrack magazine there was an article on exploiting TCP Persist Timer weaknesses (http://www.phrack.com/issues.html?issue=66&id=9#article )
to cause Denial of Service conditions.
The article discusses issues similar but not the same as the issues reported by Outpost24.
The publication of the Phrack-magazine article will not affect the coordination and schedule related to the issues reported by Outpost24.
CERT-FI emphasizes that the eventual release of the issues reported by Outpost24 will be done in a coordinated fashion."
https://www.cert.fi/haavoittuvuudet/2008/tcp-vulnerabilities.html
Juha-Matti
