|
Netscreen Non-Supported Transport Protocol Filter Bypass
|
|
Secunia Advisory:
|
SA9248
|
|
|
Release Date:
|
2003-07-12
|
|
Last Update:
|
2003-07-14
|
|
Popularity:
|
7,925 views
|
|
|
Critical:
|
Moderately critical
|
|
Impact:
|
Security Bypass
|
|
Where:
|
From local network
|
|
Solution Status:
|
Vendor Patch
|
|
| OS: | NetScreen ScreenOS 4.x
|
|
|
Secunia CVSS-2 Score:
|
Available in Secunia business solutions 
|
|
|
Subscribe:
|
Instant alerts on relevant vulnerabilities
|
|
| Advisory Content (Page 1 of 3) | [ 1 ] [ 2 ] [ 3 ] | |
|
Description:
A vulnerability has been reported in NetScreen, which can be exploited by malicious people to bypass the firewall filter.
Reportedly, NetScreen cannot filter other transport protocols than ARP and IP when running in bridged mode. This can be exploited on networks supporting other protocols (eg. IPX) to bypass the firewall and contact services, where access was thought the be restricted by the firewall.
Reportedly, the vulnerability is present whether the screening setting "bypass non-IP traffic" has been enabled or not.
Change Page:
[ 1 ] [ 2 ] [ 3 ]
|
|
|
Track this Secunia Advisory
|
Customers of the Secunia Vulnerability Intelligence solutions will automatically receive updates when new information regarding this advisory is released.
Read more about our Vulnerability Intelligence solutions and what they can do for you and your company.
|
|
|
About this Secunia Advisory
|
Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise.
Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.
|
