|
Ping of death |
|
|
|
| FAQ | |||
|
|
SummaryThis indicated an attempt to crash your system.
Details
A TCP/IP packet with a theoretical length greater than 65536-bytes has been sent to the machine. This attack was popular around July of 1997, but since then most systems have been patched to prevent this bug.
TCP/IP supports a feature called "fragmentation", where a single IP-packet can be broken down into smaller segments. This is needed because the typical Internet connection (dial-up, Ethernet, cable-modem, etc.) only supports packets of around a couple thousand bytes, but IP supports packets up to 64-kbytes. Thus, when sending a single packet that is too large for a link, it is broken up into smaller packet fragments.
A quirk of IP is that while a single packet cannot exceed 65536-bytes, the fragments themselves can add up to more than that. The "Ping of Death" technique does just that. Since this is a condition thought impossible, operating systems crash when they receive this data.
Ping of death can actually be run from older versions of Windows. At a command line, simply type:
ping -l 65550 VICTIMA further bug in Windows is that it not only crashes when it receives the invalid data, but it can accidentally also generate it. Newer versions of Windows prevent you from sending these packets.Spoofing
Ping-of-Death packets are easily spoofed, so you cannot rely upon the IP address of the sender.
Aliases
There are lots of variants to this attack: jolt, sPING, ICMP bug, IceNewk, Ping o' Death
| more information |
|
Version appeared: