Check Point FireWall-1 Port 264 Saturation DoS

2000-07-07T00:00:00
ID OSVDB:4427
Type osvdb
Reporter Hugo Vázquez Caramés(Hugo.Vazquez@add.es)
Modified 2000-07-07T00:00:00

Description

Vulnerability Description

Check Point FireWall-1 contains a flaw that may allow a remote denial of service. The issue is triggered when a remote attacker floods UDP port 264 causing the firewall to consume CPU resources or stop passing traffic.

Solution Description

Currently, there are no known upgrades or patches to correct this issue. It is possible to correct the flaw by implementing the following workaround: disable traffic to UDP port 264

Short Description

Check Point FireWall-1 contains a flaw that may allow a remote denial of service. The issue is triggered when a remote attacker floods UDP port 264 causing the firewall to consume CPU resources or stop passing traffic.

References:

Other Advisory URL: http://www.securiteam.com/securitynews/5OR050A1TW.html Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2000-07/0085.html Keyword: UDP Port 264 Keyword: Firewall ISS X-Force ID: 7368 CVE-2000-1201