[11318] in bugtraq
FW1 UDP Port 0 DoS
daemon@ATHENA.MIT.EDU (Malikai)
Mon Aug 9 20:30:52 1999
Mime-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Message-Id: <Pine.LNX.4.10.9908051851320.8871-100000@area51>
Date: Mon, 9 Aug 1999 08:19:02 -0500
Reply-To: Malikai <malikai@INTERACTIVEALIEN.COM>
From: Malikai <malikai@INTERACTIVEALIEN.COM>
X-To: bugtraq@securityfocus.com
To: BUGTRAQ@SECURITYFOCUS.COM
Hi,
Forgive me if this has allready been identified, but after doing a
search on the archives, I have found nothing relating to this issue. There
is a known bug with FireWall-1 relating to any (presumably) udp packet
destined to any (through the vpn) host at port 0. This bug was identified
by someone I do not know of, however since it has not yet been disclosed
(to my knowledge) on this or any other public forum. This issue is valid
for (to my knowledge) any flavor of encryption (DES, 3DES, FWZ1, ISAKMP,
etc.). I know that this issue has been known over there at checkpoint for
some time now, and to my current understanding it has yet to be fixed.
Malikai
