[14157] in bugtraq


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: Addendum to Firewall-1 FTP Server Vulnerability

daemon@ATHENA.MIT.EDU (Mikael Olsson)
Fri Mar 3 15:00:47 2000

Mime-Version: 1.0
Content-Type: text/plain; charset=iso-8859-1
Content-Transfer-Encoding: 8bit
Message-Id:  <38BEE2F2.69BF7AD5@enternet.se>
Date:         Thu, 2 Mar 2000 22:53:54 +0100
Reply-To: Mikael Olsson <mikael.olsson@ENTERNET.SE>
From: Mikael Olsson <mikael.olsson@ENTERNET.SE>
X-To:         Jacek Lipkowski <sq5bpf@ACID.CH.PW.EDU.PL>
To: BUGTRAQ@SECURITYFOCUS.COM

As I said in my original posting to vuln-dev:

I think you will find that ALL stateful inspection firewalls
with FTP ALGs that do not reassemble the TCP stream are vulnerable
to this attack.

Jacek Lipkowski wrote:
>
> the recent firewall-1 pasv vulnerability also applies to cisco pix (don't
> know which version - it's not my pix :).
>
> jacek

--
Mikael Olsson, EnterNet Sweden AB, Box 393, S-891 28 VRNSKVLDSVIK
Phone: +46 (0)660 105 50           Fax: +46 (0)660 122 50
Mobile: +46 (0)70 66 77 636
WWW: http://www.enternet.se        E-mail: mikael.olsson@enternet.se


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[14157] in bugtraq

Re: Addendum to Firewall-1 FTP Server Vulnerability

daemon@ATHENA.MIT.EDU (Mikael Olsson)Fri Mar 3 15:00:47 2000

daemon@ATHENA.MIT.EDU (Mikael Olsson)
Fri Mar 3 15:00:47 2000