Is IP fragmentation still considered vulnerable?