Details of VAR-199908-0026

ID

VAR-199908-0026

CVE

CVE-1999-0675

TITLE

Firewall-1 Port 0 Denial of Service Vulnerability

Trust: 0.9

sources: BID: 576 // CNNVD: CNNVD-199908-013

DESCRIPTION

Check Point FireWall-1 can be subjected to a denial of service via UDP packets that are sent through VPN-1 to port 0 of a host. This issue only seems to take place when the VPN being used for the transport of the packet supports ISAKMP encryption. It has been reported that Solaris hosts being attacked via this method will reboot. Check Point FireWall-1 is vulnerable

Trust: 1.26

sources: NVD: CVE-1999-0675 // BID: 576 // VULHUB: VHN-657

AFFECTED PRODUCTS

vendor:	checkpoint	model:	firewall-1	scope:	eq	version:	4.0	Trust: 1.6
vendor:	checkpoint	model:	firewall-1	scope:	eq	version:	3.0	Trust: 1.6
vendor:	check	model:	point software firewall-1	scope:	eq	version:	4.0	Trust: 0.3
vendor:	check	model:	point software firewall-1	scope:	eq	version:	3.0	Trust: 0.3

sources: BID: 576 // CNNVD: CNNVD-199908-013 // NVD: CVE-1999-0675

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-1999-0675
value:	MEDIUM
Trust: 1.0
CNNVD:	CNNVD-199908-013
value:	MEDIUM
Trust: 0.6
VULHUB:	VHN-657
value:	MEDIUM
Trust: 0.1

nvd@nist.gov:	CVE-1999-0675
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:N/I:N/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	PARTIAL
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.0
VULHUB:	VHN-657
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:N/I:N/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	PARTIAL
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

sources: VULHUB: VHN-657 // CNNVD: CNNVD-199908-013 // NVD: CVE-1999-0675

PROBLEMTYPE DATA

problemtype:

NVD-CWE-Other

Trust: 1.0

sources: NVD: CVE-1999-0675

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-199908-013

TYPE

Unknown

Trust: 0.9

sources: BID: 576 // CNNVD: CNNVD-199908-013

EXTERNAL IDS

db:	BID	id:	576	Trust: 2.0
db:	NVD	id:	CVE-1999-0675	Trust: 1.7
db:	OSVDB	id:	1038	Trust: 1.7
db:	CNNVD	id:	CNNVD-199908-013	Trust: 0.7
db:	BUGTRAQ	id:	19990809 FW1 UDP PORT 0 DOS	Trust: 0.6
db:	VULHUB	id:	VHN-657	Trust: 0.1

sources: VULHUB: VHN-657 // BID: 576 // CNNVD: CNNVD-199908-013 // NVD: CVE-1999-0675

REFERENCES

url:	http://www.securityfocus.com/bid/576	Trust: 1.7
url:	http://www.securityfocus.com/archive/1/23615	Trust: 1.7
url:	http://www.osvdb.org/1038	Trust: 1.7
url:	http://www.enteract.com/~lspitz/fwtable.html	Trust: 0.3
url:	-	Trust: 0.1

sources: VULHUB: VHN-657 // BID: 576 // CNNVD: CNNVD-199908-013 // NVD: CVE-1999-0675

CREDITS

This vulnerability was forwarded to the Bugtraq mailing list by Malikai <malikai@interactivealien.com> on Sun Aug 08 1999.

Trust: 0.9

sources: BID: 576 // CNNVD: CNNVD-199908-013

SOURCES

db:	VULHUB	id:	VHN-657
db:	BID	id:	576
db:	CNNVD	id:	CNNVD-199908-013
db:	NVD	id:	CVE-1999-0675

LAST UPDATE DATE

2024-08-14T13:40:50.768000+00:00

SOURCES UPDATE DATE

db:	VULHUB	id:	VHN-657	date:	2008-09-09T00:00:00
db:	BID	id:	576	date:	1999-08-09T00:00:00
db:	CNNVD	id:	CNNVD-199908-013	date:	2006-01-04T00:00:00
db:	NVD	id:	CVE-1999-0675	date:	2008-09-09T12:35:12.883

SOURCES RELEASE DATE

db:	VULHUB	id:	VHN-657	date:	1999-08-09T00:00:00
db:	BID	id:	576	date:	1999-08-09T00:00:00
db:	CNNVD	id:	CNNVD-199908-013	date:	1999-08-09T00:00:00
db:	NVD	id:	CVE-1999-0675	date:	1999-08-09T04:00:00