Checkpoint Firewall-1 vulnerability announced

VPNs allow for easy identification

By INQUIRER staff

Tue Jul 06 2004, 12:22

SECURITY TESTING COMPANY NTA MONITOR has today issued a vulnerability warning for the Checkpoint Firewall-1 system - Checkpoint Firewall-1 VPNs are apparently visible to external hackers, which makes it possible for attackers to identify the firewall type and version number.

A fingerprinting technique, developed by NTA Monitor and dubbed IKE Vendor ID fingerprinting, allows the specific version of Firewall-1 to be identified. NTA reckons that the security issue affects all of the Checkpoint Firewall-1 products that are running IPsec VPN - currently there is no vendor fix, disabling IPsec is the only known workaround so far.

Roy Hills, technical director at NTA Monitor says "VPNs have been assumed to be an invisible and secure method of communication between a server and a remote connection. But such thinking is naïve."

Hills also said network admins need to check that they are aware of VPNs configured within their network, and must make sure they're using the latest security releases. µ

L'INQ
IKE Scan tool
Detailed vulnerability information

Hacked MIT server is blamed for brute force web site attacks Bitdefender traces attacks on dot edu web sites Thursday, 3 November 2011, 15:55 PM Read more	Adobe Flash exploit lets websites hijack your webcam Simple iframe technique allows clickjacking Friday, 21 October 2011, 12:21 PM Read more
FBI arrests more Lulzsec and Anonymous suspects Trio charged with hacking offences Friday, 23 September 2011, 12:36 PM Read more	HTML5 poses security risks It's plagued by security issues, report says Tuesday, 2 August 2011, 18:11 PM Read more
Linkedin SSL vulnerability leaves accounts open to hacking Cookie issues trip up the business networking web site Monday, 23 May 2011, 11:41 AM Read more	Hackers put Linux back on the Playstation 3 Sony is too busy to respond yet Monday, 9 May 2011, 13:32 PM Read more

Comments

There are no comments submitted yet. Do you have an interesting opinion? Then be the first to post a comment.

INQ White papers

Databases

Network management

Security

Service oriented architecture

Storage

INQ Jobs

Experienced SAS Programmer

Experienced Pharmaceutical ...

INQ Poll

Authorities in several countries raided Megaupload recently, shut down all of its services, seized hundreds of servers and arrested several of its executives on criminal charges.

Do you think the move was justified?

Yes, companies should suffer an immediate death penalty upon being accused of copyright infringement.

Yes, the coppers said the company was breaking the law so it must be guilty.

No, the company and the people accused are innocent until proven guilty.

No, the company had millions of customers who have been harmed by having access to their data files cut off.

I don't care, I never used Megaupload anyway.

View other polls

© Incisive Media Investments Limited 2012, Published by Incisive Financial Publishing Limited, Haymarket House, 28-29 Haymarket, London SW1Y 4RX, are companies registered in England and Wales with company registration numbers 04252091 & 04252093

SEARCH :

Site Credentials:

Business & Technology websites:

Business research resources:

Products:

Investment Market IT websites:

Find out what you are worth:

Salary Calculator

Search for a job:

Recruitment Agency A-Z Directory

Accreditations:

Digital Publisher of the Year 2010

Checkpoint Firewall-1 vulnerability announced

Share this:

RIM Playbook OS 2.0 and Blackberry 7.1 video demo

Nokia Lumia 710 video review