This paper uncovers a vulnerability that allows for an attacker to perform an email-based attack on selected victims, using only standard scripts and agents. What differentiates the attack this paper described from other, already known forms of distributed denial of service (DDoS) attacks is that an attacker does not need to infiltrate the network in any manner - as is normally required to launch a DDoS attack. Thus, it sees this type of attack as a poor man's DDoS. Not only is the attack easy to mount, but it is also almost impossible to trace back to the perpetrator. Along with descriptions of the attack, it demonstrates its destructive potential with (limited and contained) experimental results.
Did you find this white paper useful?
5 out of 15 users found this white paper useful
Related white papers
SprintSecure Message Protection Fact Sheet
SprintSecure(sm) Message Protection keeps businesses safe from potential security risks due to the explosive growth of email. Read this solution brief to see how to keep your email assets...
Cisco Security Advisory: Cisco IOS Secure Shell Denial of Service Vulnerabilities
The Secure Shell server (SSH) implementation in Cisco IOS contains multiple vulnerabilities that allow unauthenticated users the ability to generate a spurious memory access error or, in certain cases, reload...
Design Guide: Arbor Networks' Peakflow DoS
The Peakflow DoS patent-pending technology focuses on network availability rather than simply identifying threats. Peakflow DoS identifies any traffic anomaly and generates recommendations for mitigating it, thus enabling peak network...
Is Your Anti-Spam Defense at the Top of its Game?
Spammers continue to change their spam distribution tactics in order to maximize delivery rates for their messages. As a result, educational institutions are being flooded with an increase in...
An Efficient Filter for Denial-of-Service Bandwidth Attacks
This paper presents an efficient method for detecting and filtering denial-of-service bandwidth attacks. The system called TOPS (Tabulated Online Packet Statistics) can monitor a large number of network addresses in...
Protection for the Cisco Catalyst 6500 Series Switches Against Denial-of-Service Attacks
Denial-of-Service (DoS) attacks continue to be a serious threat to enterprise and service provider networks. They can disrupt mission-critical services, prevent data transfer between devices, and decrease overall productivity. The...
Botnets: The New Threat Landscape
A botnet is an army of compromised machines, also known as "Zombies," that are under the command and control of a single "Botmaster." The rise of consumer broadband has greatly...
