[29436] in bugtraq


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: Check Point FW-1 NG FP3 & FP3 HF1: DoS attack against syslog

daemon@ATHENA.MIT.EDU (Matthias Leu)
Mon Mar 24 11:38:17 2003

Message-ID: <3E7C0733.4040600@aerasec.de>
Date: Sat, 22 Mar 2003 07:48:19 +0100
From: Matthias Leu <mleu@aerasec.de>
MIME-Version: 1.0
To: "Hines, Eric" <ehin4@allstate.com>
In-Reply-To: <1779CE9992706F45BDC9575124A5AAE501221888@a0001-xpo0114-s.hodc.ad.allstate.com>
Content-Type: text/plain; charset=us-ascii; format=flowed
Content-Transfer-Encoding: 7bit

Hi,
accepting syslog messages by a Check Point object has been introduced 
with NG FP3, so this effect will not occur with FP1 or FP2.
Best regards,
Matthias

Hines, Eric wrote:
> Has anyone tested these vulnerabilities on NG FP1 or are they strictly
> related to FP3?
> 
> Eric Hines
> 
> -----Original Message-----
> From: Dr. Peter Bieringer [mailto:pbieringer@aerasec.de]
> Sent: Friday, March 21, 2003 6:47 AM
> To: Maillist Bugtraq; Maillist full-disclosure
> Subject: Check Point FW-1 NG FP3 & FP3 HF1: DoS attack against syslog
> daemon possible 
> 
> 
> Hi all,
> 
> interesting for all Check Point FW-1 NG users which have enabled the since
> FP3 included syslog daemon.
> 
> 
> 

-- 
AERAsec Network Services and Security GmbH
Wagenberger Strasse 1
D-85662 Hohenbrunn, Germany
http://www.aerasec.de


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[29436] in bugtraq

Re: Check Point FW-1 NG FP3 & FP3 HF1: DoS attack against syslog

daemon@ATHENA.MIT.EDU (Matthias Leu)Mon Mar 24 11:38:17 2003

daemon@ATHENA.MIT.EDU (Matthias Leu)
Mon Mar 24 11:38:17 2003