Vulnerability found in key network protocol

Two researchers from the Swedish IT company Outpost24 discovered a vulnerability in the Transmission Control Protocol (TCP), which allows a new type of DoS attack, writes The Register. TCP is one of the main network protocols of the Internet.

It is argued that the new class of attack does not require a broadband channel. In this case, the server or router may not resume even after the cessation of the attack. To fix the situation, they will have to reboot. To “paralyze” the equipment, an attack of up to four minutes is enough.

The researchers who discovered the vulnerability began to inform the manufacturer of operating systems, routers and network protection tools since last month. Currently, no funds from the new class of attacks have been found, except for the ban on anonymous connections.

This is not the first vulnerability found in key Internet protocols since the beginning of the year. In the summer, a flaw in the DNS protocol was revealed that allowed traffic to be redirected from any web address to their servers. Then a method was found to intercept and modify traffic.
')
source: lenta.ru