As the other two or so posts pointed out, there was recently a bug related to 802.1p/q (VLAN) related to Cisco Catalyst 2900 and 5000s. I can't seem to recall the bug number. See bugtraq ID 2604 (this looks like an older one) http://www.sans.org/infosecFAQ/switchednet/switch_security.htm http://cisco.com/warp/public/cc/so/cuso/epso/sqfr/safe_wp.htm (Cisco says that VLANs aren't secure. Are you going to argue with Cisco?) FYI, this was discussed on this list in great detail back in April 2001. Brett Osborne -----Original Message----- From: hellNbak [mailto:hellnbakat_private] Sent: Sunday, June 10, 2001 12:59 AM To: pen-testat_private Subject: VLAN Issue Hi everyone. I am looking for an actual exploit to verify the VLAN hopping issue that was reported back in 1999. I have found a bunch of docs and a few email threads on it but it seems that no one has generated a working exploit. I am in the unfortunate situation where I have a client who is refusing to believe the documentation and actually wants a live demo. Why isn't reading an RFC and pointing out flaws enough for people anymore?? -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- "I don't intend to offend - I offend with my intent" hellNbakat_private -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
This archive was generated by hypermail 2b30 : Tue Jun 12 2001 - 21:37:53 PDT