Re: Addendum to Firewall-1 FTP Server Vulnerability

From: Mikael Olsson (mikael.olssonat_private)
Date: Thu Mar 02 2000 - 13:53:54 PST

Next message: Viktor Fougstedt: "Potential security problem with mtr"

Previous message: Derek Callaway: "Re: [ Hackerslab bug_paper ] Linux dump buffer overflow"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

As I said in my original posting to vuln-dev:

I think you will find that ALL stateful inspection firewalls
with FTP ALGs that do not reassemble the TCP stream are vulnerable
to this attack.

Jacek Lipkowski wrote:
>
> the recent firewall-1 pasv vulnerability also applies to cisco pix (don't
> know which version - it's not my pix :).
>
> jacek

--
Mikael Olsson, EnterNet Sweden AB, Box 393, S-891 28 ÖRNSKÖLDSVIK
Phone: +46 (0)660 105 50           Fax: +46 (0)660 122 50
Mobile: +46 (0)70 66 77 636
WWW: http://www.enternet.se        E-mail: mikael.olssonat_private

Next message: Viktor Fougstedt: "Potential security problem with mtr"
Previous message: Derek Callaway: "Re: [ Hackerslab bug_paper ] Linux dump buffer overflow"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Fri Apr 13 2001 - 15:38:48 PDT