Lab Notes

Musings on Wi-Fi security issues, our product plans, and the general state of the world. Follow up with your comments and complaints to Lab Notes's .

An Old Attack Is New Again

Windows WP SP2 and Windows Server 2003 are vulnerable to the LAND attack. This one is an oldie — it was originally identified in 1997 (OK, so that's not that long ago in geologic time, but in internet time...). Fortunately, having Windows Firewall enabled blocks the attack.
The reappearance of bugs like this highlights the importance of regression testing, which confirms that new software modifications don't unfix previously fixed bugs. It also highlights the importance of institutional memory. This attack is over seven years old — it's very possible the Microsoft engineer who re-introduced the vulnerability was not working at the company back then, and was not even aware that the LAND attack existed. Having the old hands around who know what not to do is just as important as hiring the young guns for any software development company.
By Periodik Labs on March 10, 2005 4:53 PM |

Search

Recent Entries

Mac OS X 10.5.1
Elektron and Leopard
Elektron 2.0.1755
AirPort Base Station Update 2007-002
AirPort Extreme Update 2007-004
New Elektron Release: 2.0.1744
PARC: Wi-Fi PKI Usability Stinks
A Real iPhone Exploit?
Duke: iPhones Don't Actually Attack
When iPhones Attack

Monthly Archives

November 2007 (1)
October 2007 (1)
September 2007 (1)
August 2007 (1)
July 2007 (8)
June 2007 (16)
November 2005 (8)
October 2005 (13)
September 2005 (22)
August 2005 (23)
July 2005 (21)
June 2005 (26)
May 2005 (23)
April 2005 (23)
March 2005 (25)
February 2005 (23)
January 2005 (29)
December 2004 (32)
November 2004 (32)





Subscribe to Lab Notes