[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] [FW1] FW: CERT Advisory CA-2001-17
Title: FW: CERT Advisory CA-2001-17 FYI -----Original Message-----
-----BEGIN PGP SIGNED MESSAGE----- CERT Advisory CA-2001-17 Check Point RDP Bypass Vulnerability Original release date: July 09, 2001
A complete revision history is at the end of this file. Systems Affected * Check Point VPN-1 and FireWall-1 Version 4.1 Overview A vulnerability in Check Point FireWall-1 and VPN-1 may allow an
I. Description Inside Security GmbH has discovered a vulnerability in Check Point
The Reliable Data Protocol (RDP) is designed to provide a reliable
RDP was designed to have much of the same functionality as TCP, but it
By adding a faked RDP header to normal UDP traffic any content can
For more information, see the Inside Security GmbH security advisory,
http://www.inside-security.de/advisories/fw1_rdp.html Although the CERT/CC has not seen any incident activity related to
II. Impact An intruder can pass UDP traffic with arbitrary content through the
If an intruder can gain control of a host inside the firewall, he may
Additionally, even if an intruder does not have control of a host
Finally, an intruder may be able to use this vulnerability to launch
III. Solutions Install a patch from Check Point Software Technologies. More
Until a patch can be applied, you may be able to reduce your exposure
Appendix A Check Point Check Point has issued an alert for this vulnerability at http://www.checkpoint.com/techsupport/alerts/ Download the patch from Check Point's web site: http://www.checkpoint.com/techsupport/downloads.html Appendix B. - References 1. http://www.inside-security.de/advisories/fw1_rdp.html
Our thanks to Inside Security GmbH for the information contained in
This document was written by Ian A. Finlay. If you have feedback
mailto:[email protected]?Subject=Feedback CA-2001-17 [VU#310295] Copyright 2001 Carnegie Mellon University. Revision History
-----BEGIN PGP SIGNATURE-----
iQCVAwUBO0njBQYcfu8gsZJZAQHOCAP+L8JEWTsWqvWjZQaVpHPb6GHn7D837lzc
|