Check Point Firewall-1 Fragmented Packets DoS Vulnerability
BID:1312
Info
Check Point Firewall-1 Fragmented Packets DoS Vulnerability
| Bugtraq ID: | 1312 |
| Class: | Failure to Handle Exceptional Conditions |
| CVE: | |
| Remote: | Yes |
| Local: | Yes |
| Published: | Jun 06 2000 12:00AM |
| Updated: | Jun 06 2000 12:00AM |
| Credit: | Discovered by and posted to Bugtraq on June 6, 2000 by Lance Spitzner <[email protected]>. |
| Vulnerable: |
Check Point Software Firewall-1 4.1 Check Point Software Firewall-1 4.0 |
| Not Vulnerable: | |
Exploit / POC
Check Point Firewall-1 Fragmented Packets DoS Vulnerability
Although this exploit was coded for a different vulnerability, it has proven to be effective in demonstrating this vulnerability as well.
Although this exploit was coded for a different vulnerability, it has proven to be effective in demonstrating this vulnerability as well.
Solution / Fix
Check Point Firewall-1 Fragmented Packets DoS Vulnerability
Solution:
Checkpoint has released service pack 2 for Firewall-1 4.1 which addresses this issue. It is available for users with a software subscription from the following location:
http://www.checkpoint.com/cgi-bin/download.cgi
Solution:
Checkpoint has released service pack 2 for Firewall-1 4.1 which addresses this issue. It is available for users with a software subscription from the following location:
http://www.checkpoint.com/cgi-bin/download.cgi
References
Check Point Firewall-1 Fragmented Packets DoS Vulnerability
References:
References:
- Check Point IP Fragment-driven DoS Alert (Check Point Software)
- FireWall-1 Product Homepage (Check Point Software)