Outpost Firewall Pro packet denial of service
| outpost-packet-dos (16133) |  Medium Risk |
Description:
Outpost Firewall Pro is vulnerable to a denial of service attack. A remote attacker could send specially-crafted packets to the firewall from random source addresses at a rate larger than 90Kb/sec, which would cause a delay in the processing of packets and the consumption of all available resources.
Consequences:
Denial of Service
Remedy:
No remedy available as of July 9, 2011.
References:
- SecuriTeam Mailing List, Windows NT focus 12 May 2004: Agnitum Outpost Firewall Pro DoS.
- BID-10338: Agnitum Outpost Firewall Remote Denial of Service Vulnerability
- CVE-2004-2472: Agnitum Outpost Pro Firewall 2.1 allows remote attackers to cause a denial of service (CPU consumption) via a flood of small, invalid packets, which can not be processed quickly enough by Outpost Pro.
- OSVDB ID: 6110: Outpost Firewall Incomplete Request DoS
- SA11601: Outpost Firewall Denial of Service Vulnerability
- SECTRACK ID: 1010151: Agnitum Outpost Firewall Pro Can Be Crashed By Remote Users Sending a Sustained Packet Flood
Platforms Affected:
- Agnitum Outpost Firewall Pro 2.1
Reported:
May 13, 2004
The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (IBM Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.
For corrections or additions please email xforce@iss.net