Followup: Remotely Lock up Gauntlet 5.0

From: Mike Frantzen (frantzenat_private)
Date: Wed Aug 04 1999 - 12:28:30 PDT

Next message: Brian Elfert: "Re: Cisco 675 password nonsense"

Previous message: Wanderley J. Abreu Jr.: "Re: Alert : MS Office 97 Vulnerability (Explanation and Fix)"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

>  * Description:
>  *  If you know an IP that will be routed through a Gauntlet 5.0 Firewall,
>  *  you can remotely lock up the firewall (tested against Solaris 2.6 and
>  *  BSDI).  It locks up to the point that one packet will disable STOP-A
>  *  (L1-A) on Sparcs and ~3-5 packets will disable Ctrl-Alt-Del on BSDI
>  *  (Ctrl-Alt-Del still prompts Y/N but it never reboots).

Network Associates just released a patch for the problem.  It can be found
at  ftp://ftp.tis.com/gauntlet/patches/5.0

Two and a half weeks for a kernel patch....  Not too shabby.

enjoy,
.mike

---

Every one we don't catch would be a "yet another major ms security hole",
and the theory tells us we can't catch all of them.  So, we're just not
going to start down that path.
	--paulleat_private 08/06/98 Bugtraq

Next message: Brian Elfert: "Re: Cisco 675 password nonsense"
Previous message: Wanderley J. Abreu Jr.: "Re: Alert : MS Office 97 Vulnerability (Explanation and Fix)"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Fri Apr 13 2001 - 14:54:55 PDT