Check Point FireWall-1 Limited License DoS

2001-01-17T00:00:00
ID OSVDB:1733
Type osvdb
Reporter Tim Hall(thall@rootgroup.com)
Modified 2001-01-17T00:00:00

Description

Vulnerability Description

Check Point FireWall-1 contains a flaw that may allow a remote denial of service. The issue is triggered when a remote attacker sends a large amount of spoofed packets to the internal interface of a FireWall-1 machine using a limited-IP license, and will result in loss of availability for the firewall.

Solution Description

Currently, there are no known upgrades or patches to correct this issue. It is possible to correct the flaw by implementing the following workaround: issue a "fw ctl debug -buf" to prevent the console logging from consuming excessive CPU.

Short Description

Check Point FireWall-1 contains a flaw that may allow a remote denial of service. The issue is triggered when a remote attacker sends a large amount of spoofed packets to the internal interface of a FireWall-1 machine using a limited-IP license, and will result in loss of availability for the firewall.

References:

Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2001-01/0298.html ISS X-Force ID: 5966 CVE-2001-0182 Bugtraq ID: 2238