[ipv6hackers] (Remote) Neighbor Cache Exhaustion Attacks - Some Discussion
Fernando Gont
fgont at si6networks.com
Wed Mar 6 01:26:05 CET 2013
Hi, Enno,
On 03/05/2013 08:58 AM, Enno Rey wrote:
>
> Can anybody confirm similar behavior for other vendors' L3 devices or
> routers based on BSD/Linux/Solaris/whatever?
{Free, Net}BSD *are* vulnerable. IIRC, at least some Juniper boxes are
vulnerable to this issue, too.
> I tend to conclude that
> the actual risk of remote NCE is exaggerated in some circles, but I
> might have overlooked sth.
No. For instance, there's even an IETF draft that discusses this issue:
http://www.rfc-editor.org/rfc/rfc6583.txt
Thanks!
Best regards,
--
Fernando Gont
SI6 Networks
e-mail: fgont at si6networks.com
PGP Fingerprint: 6666 31C6 D484 63B2 8FB1 E3C4 AE25 0D55 1D4E 7492
More information about the Ipv6hackers
mailing list