Network Protocols

EtherLeak: IP Total Length Over-read via Ethernet Frame Padding

IP Total Length over-read via Ethernet frame padding is not a solved problem. CVE-2003-0001 (2003), CVE-2021-3031 (Palo Alto, 2021), and multiple 2026 findings prove the mechanism survives across architectures and vendors. This post breaks down the math, the invisibility cloak, and the PoC.

June 5, 2026 · JM00NJ

Smurf Amplification in 2026: Pre-Auth ICMP Reflection via L2 Broadcast

CVE-1999-0513 is 27 years old. The mechanism is alive. A 2026 enterprise wireless controller with no uRPF, no directed broadcast filtering, and an ICMP Echo handler that reflects to any source address gives you Smurf amplification from L2 adjacency. This post documents the full chain.

June 5, 2026 · JM00NJ