Hi,
Info at www.tis.com/support
The original information and a demonstration exploit are at
www.securityfocus.com
As to Grambles original point, I'm not sure why there's been little
discussion of this, perhaps people don't realise the magnitude of a full
default remote exploit of a 'major' firewall system? I'm also not sure how
many people use Gauntlet these days - It was big when I started a few years
ago, whereas now I would probably use FW-1/Pix first. Or perhaps not that
many people who use Gauntlet hand out on this list, perhaps the
gauntlet-users list has more coverage.
Cheers,
Steve
At 02:10 PM 5/30/00 +1000, Dave Harris wrote:
>Does this affect both UNIX and NT versions?
>
>Where can I get more info on the actual attack?
>
>Mikael Olsson wrote:
>
>> Ron DuFresne wrote:
>> >
>> > You, perhaps, maybe over reacting to thge stress of so much hitting you
>> > all at once. If I recall the advisory, this was not something known and
>> > in the wild, it was discovered by a consultant doing a security auditd,
>> > was it not? Or am *I* confusing issues?
>>
>> This was publicly announced by a security consultant, yes.
>> However, blackhats are not in the habit of publicly announcing
>> their favourite back doors into other people's systems.
>>
>> If it has been known to the Bad Guys(tm), or for how long,
>> we'll never know. As usual.
>>
>> --
>> Mikael Olsson, EnterNet Sweden AB, Box 393, SE-891 28 �RNSK�LDSVIK
>> Phone: +46-(0)660-29 92 00 Fax: +46-(0)660-122 50
>> Mobile: +46-(0)70-66 77 636
>> WWW: http://www.enternet.se E-mail: [EMAIL PROTECTED]
>> -
>> [To unsubscribe, send mail to [EMAIL PROTECTED] with
>> "unsubscribe firewalls" in the body of the message.]
>
>-
>[To unsubscribe, send mail to [EMAIL PROTECTED] with
>"unsubscribe firewalls" in the body of the message.]
>
>
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
