TCP flaw found in the wild, firm says

An exploit for the recently disclosed TCP/IP vulnerability has been found in the wild, according to Symantec Corp. The flaw, which hypothetically could allow an attack to prematurely shut down TCP conversations, is believed to be low risk.

Symantec has seen no evidence of systems being widely impacted by this exploit, said Vincent Weafer, senior director at Symantec. Symantec does not feel that this exploit will have an immediate impact on internet activity, disrupt internet traffic or cause system outages.

ISPs were thought to be the highest risk targets, as the theoretical attack required knowledge of a more or less persistent TCP connection, such as those used in the BGP peering sessions that connect ISPs to one another.

While the attack in theory could have caused major internet outages, ISPs are said to have been implementing countermeasures for several weeks, having been tipped off by various government security coordination agencies.

This article is based on material originally published by ComputerWire

Sign up for our weekly news round-up!

Sign up to the newsletter: In Brief

Sign up for our regular news round-up!

Sign up for our weekly news round-up!

Sign up to the newsletter: In Brief

I would also like to subscribe to:

Thank you for subscribing