ID

VAR-199908-0026


CVE

CVE-1999-0675


TITLE

Firewall-1 Port 0 Denial of Service Vulnerability

Trust: 0.9

sources: BID: 576 // CNNVD: CNNVD-199908-013

DESCRIPTION

Check Point FireWall-1 can be subjected to a denial of service via UDP packets that are sent through VPN-1 to port 0 of a host. This issue only seems to take place when the VPN being used for the transport of the packet supports ISAKMP encryption. It has been reported that Solaris hosts being attacked via this method will reboot. Check Point FireWall-1 is vulnerable

Trust: 1.26

sources: NVD: CVE-1999-0675 // BID: 576 // VULHUB: VHN-657

AFFECTED PRODUCTS

vendor:checkpointmodel:firewall-1scope:eqversion:4.0

Trust: 1.6

vendor:checkpointmodel:firewall-1scope:eqversion:3.0

Trust: 1.6

vendor:checkmodel:point software firewall-1scope:eqversion:4.0

Trust: 0.3

vendor:checkmodel:point software firewall-1scope:eqversion:3.0

Trust: 0.3

sources: BID: 576 // CNNVD: CNNVD-199908-013 // NVD: CVE-1999-0675

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-1999-0675
value: MEDIUM

Trust: 1.0

CNNVD: CNNVD-199908-013
value: MEDIUM

Trust: 0.6

VULHUB: VHN-657
value: MEDIUM

Trust: 0.1

nvd@nist.gov: CVE-1999-0675
severity: MEDIUM
baseScore: 5.0
vectorString: AV:N/AC:L/AU:N/C:N/I:N/A:P
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: PARTIAL
exploitabilityScore: 10.0
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.0

VULHUB: VHN-657
severity: MEDIUM
baseScore: 5.0
vectorString: AV:N/AC:L/AU:N/C:N/I:N/A:P
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: PARTIAL
exploitabilityScore: 10.0
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

sources: VULHUB: VHN-657 // CNNVD: CNNVD-199908-013 // NVD: CVE-1999-0675

PROBLEMTYPE DATA

problemtype:NVD-CWE-Other

Trust: 1.0

sources: NVD: CVE-1999-0675

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-199908-013

TYPE

Unknown

Trust: 0.9

sources: BID: 576 // CNNVD: CNNVD-199908-013

EXTERNAL IDS

db:BIDid:576

Trust: 2.0

db:NVDid:CVE-1999-0675

Trust: 1.7

db:OSVDBid:1038

Trust: 1.7

db:CNNVDid:CNNVD-199908-013

Trust: 0.7

db:BUGTRAQid:19990809 FW1 UDP PORT 0 DOS

Trust: 0.6

db:VULHUBid:VHN-657

Trust: 0.1

sources: VULHUB: VHN-657 // BID: 576 // CNNVD: CNNVD-199908-013 // NVD: CVE-1999-0675

REFERENCES

url:http://www.securityfocus.com/bid/576

Trust: 2.7

url:http://www.securityfocus.com/archive/1/23615

Trust: 2.7

url:http://www.osvdb.org/1038

Trust: 2.7

url:http://www.enteract.com/~lspitz/fwtable.html

Trust: 0.3

url: -

Trust: 0.1

sources: VULHUB: VHN-657 // BID: 576 // CNNVD: CNNVD-199908-013 // NVD: CVE-1999-0675

CREDITS

This vulnerability was forwarded to the Bugtraq mailing list by Malikai <malikai@interactivealien.com> on Sun Aug 08 1999.

Trust: 0.9

sources: BID: 576 // CNNVD: CNNVD-199908-013

SOURCES

db:VULHUBid:VHN-657
db:BIDid:576
db:CNNVDid:CNNVD-199908-013
db:NVDid:CVE-1999-0675

LAST UPDATE DATE

2024-11-22T23:00:47.949000+00:00


SOURCES UPDATE DATE

db:VULHUBid:VHN-657date:2008-09-09T00:00:00
db:BIDid:576date:1999-08-09T00:00:00
db:CNNVDid:CNNVD-199908-013date:2006-01-04T00:00:00
db:NVDid:CVE-1999-0675date:2024-11-20T23:29:12.347

SOURCES RELEASE DATE

db:VULHUBid:VHN-657date:1999-08-09T00:00:00
db:BIDid:576date:1999-08-09T00:00:00
db:CNNVDid:CNNVD-199908-013date:1999-08-09T00:00:00
db:NVDid:CVE-1999-0675date:1999-08-09T04:00:00