As was once said by the wise hellNbak, on Sun, Jun 10, 2001 at 12:59:09AM -0400:
> Hi everyone.
>
> I am looking for an actual exploit to verify the VLAN hopping issue that
> was reported back in 1999. I have found a bunch of docs and a few email
> threads on it but it seems that no one has generated a working exploit.
Just to double check, the network you are working with is using
vlan trunking on multiple switches correct? I have commonly met the
misconception about that being an issue for VLAN's on just one switch...
I do recall writing a small utility (which I can't find now of
course ;) which did confirm in our lab that it was possible to inject
vlan hopping frames. I couldn't seem to find any code online either, but
just wanted to pipe up and let you know it HAD for SURE been done...
> I am in the unfortunate situation where I have a client who is refusing to
> believe the documentation and actually wants a live demo. Why isn't
> reading an RFC and pointing out flaws enough for people anymore??
Once again the old axiom: "This job would be perfect if it weren't
for the damn customers." ;)
Damieon Stark, CCSE
Unix/Network security specialist
<plug>
currently seeking employment
</plug>
This archive was generated by hypermail 2b30 : Mon Jun 11 2001 - 22:40:09 PDT