[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Checkpoint SYN DoS Vulnerability

To: dhenning@xxxxxxx, pawel.worach@xxxxxxxxx
Subject: Re: Checkpoint SYN DoS Vulnerability
From: "sanjay naik" <sanjaynaik@xxxxxxxxxxx>
Date: Tue, 16 May 2006 18:33:05 -0400

Hi David,

The firewalls are not configured to confuse the scanner. The configurationshave been checked by the Checkpoint Tech Support and the Checkpoint SMEsfrom our team. This is not a mis-configuration issue and SYNdefender isdisabled.

Regards,
Sanjay Naik, CISSP
Sr. Security Consultant

----Original Message Follows----
From: David Henning <dhenning@xxxxxxx>
To: "Pawel Worach" <pawel.worach@xxxxxxxxx>
CC: bugtraq@xxxxxxxxxxxxxxxxx, sanjaynaik@xxxxxxxx
Subject: Re: Checkpoint SYN DoS Vulnerability
Date: Tue, 16 May 2006 17:00:03 -0400

Souds to me like the firewall is configured to confuse scanners on
purpose.  If the performance really does degrad to DoS levels then this is
more likely a mis-configuration of one of their add-ons, not an actual
bug.  Have the settings for their IPS and SYN-Defender been checked
carefully?

David Henning, CISSP
Principal Security Analyst
Hughes Network Systems
x5533

_________________________________________________________________

Express yourself instantly with MSN Messenger! Download today - it's FREE!http://messenger.msn.click-url.com/go/onm00200471ave/direct/01/

Prev by Date: Secunia Research: IZArc unacev2.dll Buffer Overflow Vulnerability
Next by Date: Newsportal <= 0.36 Remote File Inclusion Vulnerability
Previous by thread: Re: Checkpoint SYN DoS Vulnerability
Next by thread: Re: Re: Checkpoint SYN DoS Vulnerability
Index(es):
- Date
- Thread