• Product Information
• Security Products Overview
• Juniper Networks ISG Series
• IDP Demo
• Product Poster & Z-Card 

Title: Multiple Vendor Smurf Denial of Service Vulnerability

Severity: MODERATE

Description:

The "Smurf" denial of service exploits the existance, and forwarding of, packets sent to IP broadcast addreses. By creating an ICMP echo request packet, with the source address set to an IP within the network to be attacked, and the destination address the IP broadcast address of a network which will forward and respond to ICMP echo packets sent to broadcast. Each packet sent in to the network being used to conduct the attack will be responded to by any machine which will respond to ICMP on the broadcast address. Therefore, a single packet can result in an overwhelming response count, all of which are directed to the network the attacker has forged as the source. This can result in significant bandwidth loss.

Affected Products:

• Digital UNIX 3.2.0G
• Digital UNIX 4.0.0
• Digital UNIX 4.0.0A
• Digital UNIX 4.0.0B
• Digital UNIX 4.0.0C
• Digital UNIX 4.0.0D
• FreeBSD FreeBSD 1.1.5 .1
• FreeBSD FreeBSD 2.0.5
• FreeBSD FreeBSD 2.1.0
• FreeBSD FreeBSD 2.1.5
• FreeBSD FreeBSD 2.1.6
• FreeBSD FreeBSD 2.1.7 .1
• FreeBSD FreeBSD 2.2.2
• FreeBSD FreeBSD 2.2.3
• FreeBSD FreeBSD 2.2.4
• HP HP-UX 10.20.0
• HP HP-UX 11.0.0
• IBM AIX 3.1.0
• IBM AIX 3.2.0
• IBM AIX 3.2.4
• IBM AIX 3.2.5
• Linux kernel 2.0.0
• Linux kernel 2.1.0
• NetBSD NetBSD 1.2.0
• Sun Solaris 2.4.0
• Sun Solaris 2.4.0_x86
• Sun Solaris 2.5.0
• Sun Solaris 2.5.0_x86
• Sun Solaris 2.5.1
• Sun Solaris 2.5.1_ppc
• Sun Solaris 2.5.1_x86
• Sun Solaris 2.6
• Sun Solaris 2.6_x86

References:

• Craig A. Huegen <chuegen@QUADRUNNER.COM>: smurf.txt

Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.