Checkpoint Firewall-1 vulnerability announced

VPNs allow for easy identification

By INQUIRER staff

Tuesday, 6 July 2004, 12:22

SECURITY TESTING COMPANY NTA MONITOR has today issued a vulnerability warning for the Checkpoint Firewall-1 system - Checkpoint Firewall-1 VPNs are apparently visible to external hackers, which makes it possible for attackers to identify the firewall type and version number.

A fingerprinting technique, developed by NTA Monitor and dubbed IKE Vendor ID fingerprinting, allows the specific version of Firewall-1 to be identified. NTA reckons that the security issue affects all of the Checkpoint Firewall-1 products that are running IPsec VPN - currently there is no vendor fix, disabling IPsec is the only known workaround so far.

Roy Hills, technical director at NTA Monitor says "VPNs have been assumed to be an invisible and secure method of communication between a server and a remote connection. But such thinking is naïve."

Hills also said network admins need to check that they are aware of VPNs configured within their network, and must make sure they're using the latest security releases. µ

L'INQ
IKE Scan tool
Detailed vulnerability information

New breed of spycams pose threat to privacy Cyber spying boosted by WiFi cameras Tuesday, 1 September 2009, 14:53 PM Read more	Ancient flaw hits Vista Computer can BSOD like it is 1999 Wednesday, 9 September 2009, 10:48 AM Read more
Microsoft warns of a security hole The Vole hasn't fixed it yet Tuesday, 7 July 2009, 09:36 AM Read more	Killer hackers could target cardiac implants Researcher calls for tighter security Wednesday, 30 September 2009, 13:59 PM Read more
Ubuntu 9.10 test drive Updated - Taking it for a spin Monday, 2 November 2009, 15:43 PM Read more	First Windows 7 zero day exploit is spotted You probably were not expecting this Friday, 13 November 2009, 11:42 AM Read more

Comments

There are no comments submitted yet. Do you have an interesting opinion? Then be the first to post a comment.

Most read
Most commented
Most popular

INQ Whitepapers

Will you be buying a new computer this Christmas?

Yes, a new computer will be under the tree

Yes, a netbook will fit my stocking nicely

No, but will be upgrading some components / building my own

No, my computer works fine if I change the oil often enough

Bah humbug, I'll wait for the January sales to decide

View other polls

©Incisive Media Limited, Haymarket House, 28-29 Haymarket, London SW1Y 4RX, is a company registered in the United Kingdom with company registration number 04038503

SEARCH :

Site Credentials:

Business & Technology websites:

Business research resources:

Products:

Investment Market IT websites:

Find out what you are worth:

Search for a job:

Recruitment Agency A-Z Directory: All
A B C D E F G H I J K L M N O P Q R S T U V W X Y Z

Checkpoint Firewall-1 vulnerability announced

Share this:

Business Intelligence Software

Customer Relationship Management (CRM)

Enterprise Accounting Software

Enterprise Resource Planning (ERP)

Enterprise Systems Management

Java Developer, Solution D

Java Programmer:- JAVA, J2E...

Read more

Technical Courier - Milton

Technical courier required ...

Read more

XML Content Developer

My client, a large blue-chi...

Read more

Web Designer Flash, Photos

Web Designer Flash, Photosh...

Read more

Enterprise Architect

Enterprise Architect requir...

Read more