С сайта
http://security.nnov.ru
Опубликовано: 3 апреля 2004 г.
Источник: VULNWATCH
Тип: m-i-t-m
Опасность: 5
Описание: Некорректное управление памятью может привести к тому, что добавочные (padding) байты Ethernet-фрейма могут содержать конфиденциальную информацию.
В частности, по поводу 2003-го сервера:
Vulnerable drivers include:
VIA Rhine II Compatible network card (integrated into some motherboards).
AMD PCNet family network cards (Used by several versions of VMWare)
Both drivers are digitally signed by the Microsoft Windows Publisher,
and are included on the Windows Server 2003 CD. Both drivers exhibit
the same behaviour, that of padding frames with arbitrary data. The
FIN-ACK packets exchanged during the graceful close of a TCP
connection are a particularly good source of information; several
bytes of potentially sensitive data (including POP3 passwords) has
been observed appended to the data portion of Ethernet frames sent by
these cards.