Denial of Service in WatchGuard Firebox VPN Appliance

Reported July 9, 2002, by Peter Gründl.

VERSION AFFECTED

  • WatchGuard Firebox appliance with firmware 5.x.x

 

DESCRIPTION
A Denial of Service (DoS) condition exists in WatchGuard Firebox with firmware 5.x.x. By sending a malformed packet to the listener service on TCP port 4110, an attacker can cause the Dynamic VPN Configuration Protocol (DVCP) service to fail.

 

VENDOR RESPONSE

The vendor, WatchGuard, recommends that affected users upgrade their firmware to version 6.x.x, available through the company's LiveSecurity Service.

 

CREDIT
Discovered by Andreas Sandor and Peter Gründl.

Hide comments

Comments

  • Allowed HTML tags: <em> <strong> <blockquote> <br> <p>

Plain text

  • No HTML tags allowed.
  • Web page addresses and e-mail addresses turn into links automatically.
  • Lines and paragraphs break automatically.
Publish