TUCoPS :: Network Appliances :: napl5330.htm

snapgear router & firewall DoS
3rd May 2002 [SBWID-5330]
COMMAND

	snapgear routeur & firewall DoS

SYSTEMS AFFECTED

	 Snapgear Lite+ V1.5.3 (all issues)

	 Snapgear Lite+ V1.5.4 (some issues)

	

PROBLEM

	Andreas Sandor [asandor@kpmg.dk] &  Peter  Gründl  [pgrundl@kpmg.dk]
	in KPMG advisory [#2002017] :
	

	There are four general areas in which we found  problems  with  the  way
	the Snapgear Firewall handled malicious traffic:
	

	 HTTP)

	

	If external web management had been enabled, creating 50 connections  to
	the web port and cycling through  them  would  result  in  the  firewall
	crashing. In V1.5.4 this would only result in web management crashing.
	

	 PPTP)

	

	If PPTP had been enabled, creating 50 connections to the PPTP  port  and
	cycling through them would result in the firewall crashing.
	

	 IPSEC)

	

	Sending a 0 length UDP packet to UDP port  500  would  result  in  IPSEC
	exiting. This would result in IPSEC no longer working.  This  issue  was
	resolved in v1.5.4.
	

	 IP-OPTIONS)

	

	Sending a stream of approx.  7000  packets  with  malformed  IP  options
	through the firewall would result in the firewall crashing. This  stream
	could be sent from the internal network or externally.

SOLUTION

	Upgrade to Snapgear Lite+ V1.6.0
	

	http://www.snapgear.com/downloads.html

TUCoPS is optimized to look best in Firefox® on a widescreen monitor (1440x900 or better).
Site design & layout copyright © 1986-2024 AOH