Sygate Enforcer Discovery Packet DoS

2004-08-10T08:43:44
ID OSVDB:8523
Type osvdb
Reporter Martin O'Neal(martin.oneal@corsaire.com)
Modified 2004-08-10T08:43:44

Description

Vulnerability Description

Sygate Enforcer contains a flaw that may allow a remote denial of service. The issue is triggered when a remote attacker sends a specially crafted UDP packet from source port 39999 to destination source port 39999 on the Enforcer system, and will result in loss of availability for the Enforcer system.

Solution Description

Currently, there are no known upgrades, patches, or workarounds available to correct this issue.

Short Description

Sygate Enforcer contains a flaw that may allow a remote denial of service. The issue is triggered when a remote attacker sends a specially crafted UDP packet from source port 39999 to destination source port 39999 on the Enforcer system, and will result in loss of availability for the Enforcer system.

References:

Vendor URL: http://www.sygate.com Vendor URL: http://www.sygate.com/products/universal_enforcement.htm Secunia Advisory ID:12263 Related OSVDB ID: 8525 Related OSVDB ID: 8524 Other Advisory URL: http://www.corsaire.com/advisories/c031120-001.txt Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2004-08/0142.html ISS X-Force ID: 16949 CVE-2003-0931