InGate Firewall And SIParator Unspecified Authentication Replay Vulnerability

Bugtraq ID:	22080
Class:	Access Validation Error
CVE:
Remote:	Yes
Local:	No
Published:	Jan 16 2007 12:00AM
Updated:	Jan 17 2007 01:50AM
Credit:	The vendor disclosed this issue.
Vulnerable:	Ingate SIParator 4.4.1 Ingate SIParator 4.3.4 Ingate SIParator 4.3.3 Ingate SIParator 4.3.2 Ingate SIParator 4.3.1 Ingate SIParator 4.3 Ingate SIParator 4.2.3 Ingate SIParator 4.2.2 Ingate SIParator 4.2.1 Ingate SIParator 3.3.1 Ingate SIParator 3.2.1 Ingate SIParator 3.2 Ingate SIParator 4.4 Ingate Firewalll 4.4 Ingate Firewall 4.4.1 Ingate Firewall 4.3.4 Ingate Firewall 4.3.3 Ingate Firewall 4.3.2 Ingate Firewall 4.3.1 Ingate Firewall 4.3 Ingate Firewall 4.2 .3 Ingate Firewall 4.2 .2 Ingate Firewall 4.2 .1 Ingate Firewall 4.1.3 Ingate Firewall 3.3.1 Ingate Firewall 3.2.1 Ingate Firewall 3.2
Not Vulnerable:	Ingate SIParator 4.5.1 Ingate Firewall 4.5.1

InGate Firewall And SIParator Unspecified Authentication Replay Vulnerability

Ingate Firewall and SIParator are prone to an unspecified authentication-replay vulnerability.

Very few details regarding this issue are available at this time. This BID will be updated as more information becomes available.

Versions prior to 4.5.1 are vulnerable.

InGate Firewall And SIParator Unspecified Authentication Replay Vulnerability

Currently we are not aware of any exploits for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected]:[email protected].

InGate Firewall And SIParator Unspecified Authentication Replay Vulnerability

Solution:
The vendor has addressed this issue in version 4.5.1. Please see the references for more information.

InGate Firewall And SIParator Unspecified Authentication Replay Vulnerability

References:

• Ingate Home Page (Ingate)
  
• Release notice for Ingate Firewall® 4.5.1 and Ingate SIParator® 4.5.1 (inGate)