LAND

LAND

A LAND attack is a DoS (Denial of Service) attack that consists of sending a special poison spoofed packet to a computer, causing it to lock up. The security flaw was actually first discovered in 1997 by someone using the alias "m3lt", and has resurfaced many years later in operating systems such as Windows Server 2003 and Windows XP SP2.

How it works

The attack involves sending a spoofed TCP SYN packet (connection initiation) with the target host's IP address and an open port as both source and destination.

The reason a LAND attack works is because it causes the machine to reply to itself continuously.

Definition: "A "LAND" attack involves IP packets where the source and destination address are set to address the same device."

Other land attacks have since been found in services like SNMP and Windows 88/tcp (kerberos/global services) which were caused by design flaws where the devices accepted requests on the wire appearing to be from themselves and causing replies repeatedly.

Vulnerable systems

Below is a list of vulnerable operating systems (discovered by testing on various machines):Fact|date=March 2007
* AIX 3.0
* AmigaOS AmiTCP 4.2 (Kickstart 3.0)
* BeOS Preview release 2 PowerMac
* BSDi 2.0 and 2.1
* Digital VMS
* FreeBSD 2.2.5-RELEASE and 3.0 (Fixed after required updates)
* HP External JetDirect Print Servers
* IBM AS/400 OS7400 3.7
* Irix 5.2 and 5.3
* Mac OS MacTCP, 7.6.1 OpenTransport 1.1.2 and 8.0
* NetApp NFS server 4.1d and 4.3
* NetBSD 1.1 to 1.3 (Fixed after required updates)
* NeXTSTEP 3.0 and 3.1
* Novell 4.11
* OpenVMS 7.1 with UCX 4.1-7
* QNX 4.24
* Rhapsody Developer Release
* SCO OpenServer 5.0.2 SMP, 5.0.4
* SCO Unixware 2.1.1 and 2.1.2
* SunOS 4.1.3 and 4.1.4
* Windows 95, NT and XP SP2, Vista (pre-release)

How to avoid being attacked

Most firewalls should intercept the poison packet thus protecting the host from this attack. Some operating systems released updates fixing this security hole. In addition, routers should be configured with both ingress and egress filters to block traffic where the source IP address is the same as the destination because they should block any source address within the same address space as the destination.

External links

* [http://insecure.org/sploits/land.ip.DOS.html Insecure.Org's original post about the attack]
* [http://www.internetnews.com/security/article.php/3488171 Article about XP's vulnerability]
* [http://erazer.x-ren.com/2007/05/12/land-attack-21th-century/ Different devices and OS's vulnerability]


Wikimedia Foundation. 2010.

Игры ⚽ Поможем решить контрольную работу
Synonyms:

Look at other dictionaries:

  • land — land …   The Old English to English

  • land — land …   English to the Old English

  • Land- — Land …   Deutsch Wörterbuch

  • Land — Land, n. [AS. land, lond; akin to D., G., Icel., Sw., Dan., and Goth. land. ] 1. The solid part of the surface of the earth; opposed to water as constituting a part of such surface, especially to oceans and seas; as, to sight land after a long… …   The Collaborative International Dictionary of English

  • Land ho — Land Land, n. [AS. land, lond; akin to D., G., Icel., Sw., Dan., and Goth. land. ] 1. The solid part of the surface of the earth; opposed to water as constituting a part of such surface, especially to oceans and seas; as, to sight land after a… …   The Collaborative International Dictionary of English

  • land — n 1: an area of the earth usu. inclusive of improvements, bodies of water, and natural or man made objects and extending indefinitely upward and downward compare air right 2: an estate, interest, or right in land land means both surface and… …   Law dictionary

  • Land — may refer to: The part of the Earth that is not covered by water Ecoregion Landscape Landform, physical feature comprises a geomorphological unit Land (economics), a factor of production comprising all naturally occurring resources Land law Real… …   Wikipedia

  • Land — (Pl. teils Länder, selten Lande; ahd. lant) steht für: den nicht von Wasser bedeckten Teil der Erdoberfläche, die Landfläche eine abgrenzbare, durch gemeinsame naturräumliche Merkmale bestimmte Region, Landstrich, siehe Landschaft ruraler,… …   Deutsch Wikipedia

  • Land — /land/, n. Edwin Herbert, 1909 91, U.S. inventor and businessman: created the Polaroid camera. * * * I In economics, the resource that encompasses the natural resources used in production. In classical economics, the three factors of production… …   Universalium

  • LAND — Le terme allemand das Land , neutre, revêt plusieurs significations. Il désigne la partie du globe terrestre qui n’est pas recouverte de lacs, de mers ni d’océans et permet de faire la distinction entre campagne (das Land) et ville (Stadt ); il… …   Encyclopédie Universelle

  • Land — sehen: dem Ziele nahe sein, Aussicht haben, mit einer Sache zu Ende zu kommen. Die Redensart stammt von der Seefahrt. Klaus Groth (1819 99) schreibt in seiner Gedichtsammlung ›Quickborn‹ (Gesammelte Werke I,48): »Geld muss sin Vetter em gebn,… …   Das Wörterbuch der Idiome

Share the article and excerpts

Direct link
Do a right-click on the link above
and select “Copy Link”