For those of you who do not follow bugtraq:
The "Multiple Firewalls FTP PASV" vulnerability outlined in my post:
http://www.securityfocus.com/templates/archive.pike?list=82&date=2000-02-8&[EMAIL PROTECTED]
and confirmed by John McDonald and Thomas Lopatic of Dataprotect for
Checkpoing Firewall-1:
http://www.securityfocus.com/templates/archive.pike?list=82&date=2000-02-8&[EMAIL PROTECTED]
apparently also penetrates Cisco PIX (version unknown):
http://www.securityfocus.com/templates/archive.pike?list=1&date=2000-02-29&[EMAIL PROTECTED]
And let me reiterate: This vulnerability is likely to affect all
stateful inspection firewalls with FTP "ALG"s that do not completely
reassemble the TCP stream.
Start putting some pressure on your firewall vendors to get good
fixes out, people.
Take care, all
/Mike
--
Mikael Olsson, EnterNet Sweden AB, Box 393, S-891 28 �RNSK�LDSVIK
Phone: +46 (0)660 105 50 Fax: +46 (0)660 122 50
Mobile: +46 (0)70 66 77 636
WWW: http://www.enternet.se E-mail: [EMAIL PROTECTED]
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
