Free and open-source vulnerability scanner
Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.
Install NowAvailable for macOS, Windows, and Linux
Firewall ECE-bit bypass
Information
Severity
Severity
High
Family
Family
Firewalls
CVSSv2 Base
CVSSv2 Base
7.5
CVSSv2 Vector
CVSSv2 Vector
AV:N/AC:L/Au:N/C:P/I:P/A:P
Solution Type
Solution Type
Vendor Patch
Created
Created
18 years ago
Modified
Modified
4 years ago
Summary
The remote host seems vulnerable to a bug wherein a remote attacker can circumvent the firewall by setting the ECE bit within the TCP flags field.
Affected Software
Affected Software
At least one firewall (ipfw) is known to exhibit this sort of behavior. Known vulnerable systems include all FreeBSD 3.x, 4.x, 3.5-STABLE, and 4.2-STABLE.
Solution
Solution
If you are running FreeBSD 3.X, 4.x, 3.5-STABLE, 4.2-STABLE, upgrade your firewall. If you are not running FreeBSD, contact your firewall vendor for a patch.