On Mon Feb 21 2005 at 17:42, Jon Passki wrote: > Well this relates to another thread that's active on nessus@ on > what a vulnerability can produce and how to adequately describe > that. I consider predictable IP ID's in the same class as > recursive/indirect resource usage (proxy HTTP, recursive DNS, etc). > I'm able to use it against a different target, which I consider a > risk, too. Recursive DNS does not fall in this class: it might be used to poison _your_ cache. Anyway, I see the point. The notion of danger against a third party looks interesting. _______________________________________________ Plugins-writers mailing list Plugins-writers@private http://mail.nessus.org/mailman/listinfo/plugins-writers
This archive was generated by hypermail 2.1.3 : Sun Feb 27 2005 - 05:30:54 PST