Visit our newest sister site!
Hundreds of free aircraft flight manuals
Civilian • Historical • Military • Declassified • FREE!

TUCoPS :: Security App Flaws :: win5695.htm

Sygate Personal Firewall
17th Sep 2002 [SBWID-5695]

		Sygate Personal Firewall IP Spoofing Vulnerability


		Sygate Personal Firewall 5.0


		In   Abraham   Lincoln   Hao   []   and   SunNinja
		[] advisory [NSSI-2002-sygatepfw5] :


		- SPF is vulnerable with IP Spoofing attack by Scanning the host with  a
		source ip address or network address  The  Attacker
		could scan or attack the target  host  without  being  detected  by  the
		personal firewall. This vulnerability is very serious  w/c  an  attacker
		could start a Denial of Service attack against the  spf  protected  host
		and launch any form of attack.

		- To those who wants to try to simulate the vulnerability, you  may  use
		source address - ;)






		Check : http://www.sygate.Com




		 1] Set the SPF to BLOCK ALL mode setting which i don't think the user would do ;) 

		    This type of setting would block everything all incoming request and outgoing.


		 2] Block source address or network address manually in Advance 


TUCoPS is optimized to look best in Firefox® on a widescreen monitor (1440x900 or better).
Site design & layout copyright © 1986-2015 AOH