VPNet VSU IP Bridging Vulnerability
BID:2073
Info
VPNet VSU IP Bridging Vulnerability
| Bugtraq ID: | 2073 |
| Class: | Design Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Dec 05 2000 12:00AM |
| Updated: | Dec 05 2000 12:00AM |
| Credit: | This vulnerability was announced on Bugtraq in a F8 Labs Advisory on December 5, 2000. |
| Vulnerable: |
VPNet Technologies VPNos 3.0 |
| Not Vulnerable: | |
Discussion
VPNet VSU IP Bridging Vulnerability
VPNos is an operating system designed for the VPNet VPN Service Units, by VPNet Technologies. A problem exists in the firmware that could allow a user access to restricted resources.
The problem occurs in the bridging capabilities of the firmware. It is possible to bridge insecure traffic across the VSU by abusing a system on the same segment of public network as the VSU. This can be done by adding a second address to the interface of the machine local to the VSU. The address should be one of the internal private network guarded by the VSU. It is necessary to add a routing entry to make the VSU gateway traffic for the aliased IP Address. This flaw makes it possible for a malicious user with access to a system on the same segment of network as the VSU to access and potentially exploit restricted resources.
This vulnerability has been received by VPNet Technologies. VPNet Technologies has responded to this issue, and after testing this vulnerability in various scenarios, have been unable to reproduce this problem. This vulnerability remains unverified.
VPNos is an operating system designed for the VPNet VPN Service Units, by VPNet Technologies. A problem exists in the firmware that could allow a user access to restricted resources.
The problem occurs in the bridging capabilities of the firmware. It is possible to bridge insecure traffic across the VSU by abusing a system on the same segment of public network as the VSU. This can be done by adding a second address to the interface of the machine local to the VSU. The address should be one of the internal private network guarded by the VSU. It is necessary to add a routing entry to make the VSU gateway traffic for the aliased IP Address. This flaw makes it possible for a malicious user with access to a system on the same segment of network as the VSU to access and potentially exploit restricted resources.
This vulnerability has been received by VPNet Technologies. VPNet Technologies has responded to this issue, and after testing this vulnerability in various scenarios, have been unable to reproduce this problem. This vulnerability remains unverified.
Exploit / POC
VPNet VSU IP Bridging Vulnerability
See discussion.
See discussion.
Solution / Fix
VPNet VSU IP Bridging Vulnerability
Solution:
Currently the SecurityFocus staff are not aware of any vendor supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected].
Solution:
Currently the SecurityFocus staff are not aware of any vendor supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected].
References
VPNet VSU IP Bridging Vulnerability
References:
References: