Check Point FireWall-1 Script Tag Check Bypass

2000-01-29T00:00:00
ID OSVDB:1212
Type osvdb
Reporter Arne Vidstrom(arne.vidstrom@ntsecurity.nu)
Modified 2000-01-29T00:00:00

Description

Vulnerability Description

Check Point FireWall-1 contains a flaw that allows a remote attacker to use malformed script tags that will bypass the firewall filter. The issue is due to Firewall-1 not properly recognizing certain malformed script tags and acting on them. Rather than block the traffic as it should, the firewall passes it.

Solution Description

Upgrade to version 4.0 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Short Description

Check Point FireWall-1 contains a flaw that allows a remote attacker to use malformed script tags that will bypass the firewall filter. The issue is due to Firewall-1 not properly recognizing certain malformed script tags and acting on them. Rather than block the traffic as it should, the firewall passes it.

References:

Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2000-01/0423.html Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2000-01/0459.html ISS X-Force ID: 3905 CVE-2000-0116 Bugtraq ID: 954