Info

Disclosure

Aug 06, 2004

Discovery

Unknown

Dates

Exploit

Aug 06, 2004

Solution

Unknown

Description

Nokia IPSO contains a flaw that may allow a remote denial of service. The issue is triggered when a TCP Syn flood occurs, and will result in loss of availability for the Nokia Firewall.

Classification

Location: Remote / Network Access
Attack Type: Denial of Service
Impact: Loss of Availability
Disclosure: OSVDB Verified

Solution

Upgrade to version IPSO 3.8 BUILD039, IPSO 3.7.89 BUILD004, IPSO 3.7.1 BUILD013, IPSO 3.7 BUILD039, IPSO 3.6 FCS18, IPSO 3.5.1 FCS12, IPSO 3.5 FCS24 or higher, as it has been reported to fix this vulnerability. It is also possible to correct the flaw by implementing the following workaround: Use VPN-1/FireWall-1 or Access Control Lists to block access to these ports from untrusted IP addresses.

Products

Nokia	IPSO	3.8
		3.5
		3.5.1
		3.6
		3.7
		3.7.1
		3.5 FCS24
		3.8 BUILD039
		3.7.1 BUILD013
		3.7 BUILD039
		3.6 FCS18
		3.5.1 FCS12
		3.7.89 BUILD004

References

Secunia Advisory ID: 12280
ISS X-Force ID: 16965
Vendor Specific Advisory URL: http://www.osvdb.org/ref/08/08594-resolution-21008.txt
Keyword: Resolution 21008

Credit

Unknown or Incomplete

Direct URL: http://osvdb.org/8594