Details of VAR-200006-0060

ID

VAR-200006-0060

CVE

CVE-2000-0482

TITLE

IP Fragmentation Denial-of-Service Vulnerability in FireWall-1

Trust: 1.6

sources: CERT/CC: VU#35958 // CERT/CC: VU#35958

DESCRIPTION

Check Point Firewall-1 allows remote attackers to cause a denial of service by sending a large number of malformed fragmented IP packets. A large stream of IP traffic can monopolize the CPU of a Check Point FireWall-1 firewall, resulting in a denial-of-service condition. A large stream of IP traffic can monopolize the CPU of a Check Point FireWall-1 firewall, resulting in a denial-of-service condition. The FireWall-1 rulebase cannot prevent this attack and it is not logged in the firewall logs. Check Point Firewall-1 is vulnerable

Trust: 2.7

sources: NVD: CVE-2000-0482 // CERT/CC: VU#35958 // CERT/CC: VU#35958 // BID: 1312 // VULHUB: VHN-2061

AFFECTED PRODUCTS

vendor:	check point	model:	-	scope:	-	version:	-	Trust: 1.6
vendor:	checkpoint	model:	firewall-1	scope:	eq	version:	4.0	Trust: 1.6
vendor:	checkpoint	model:	firewall-1	scope:	eq	version:	4.1	Trust: 1.6
vendor:	check	model:	point software firewall-1	scope:	eq	version:	4.1	Trust: 0.3
vendor:	check	model:	point software firewall-1	scope:	eq	version:	4.0	Trust: 0.3

sources: CERT/CC: VU#35958 // CERT/CC: VU#35958 // BID: 1312 // CNNVD: CNNVD-200006-024 // NVD: CVE-2000-0482

CVSS

SEVERITY

CVSSV2

CVSSV3

CARNEGIE MELLON:	VU#35958
value:	11.77
Trust: 1.6
nvd@nist.gov:	CVE-2000-0482
value:	MEDIUM
Trust: 1.0
CNNVD:	CNNVD-200006-024
value:	MEDIUM
Trust: 0.6
VULHUB:	VHN-2061
value:	MEDIUM
Trust: 0.1

nvd@nist.gov:	CVE-2000-0482
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:N/I:P/A:N
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	PARTIAL
availabilityImpact:	NONE
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.0
VULHUB:	VHN-2061
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:N/I:P/A:N
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	PARTIAL
availabilityImpact:	NONE
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

sources: CERT/CC: VU#35958 // CERT/CC: VU#35958 // VULHUB: VHN-2061 // CNNVD: CNNVD-200006-024 // NVD: CVE-2000-0482

PROBLEMTYPE DATA

problemtype:

NVD-CWE-Other

Trust: 1.0

sources: NVD: CVE-2000-0482

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-200006-024

TYPE

unknown

Trust: 0.6

sources: CNNVD: CNNVD-200006-024

EXPLOIT AVAILABILITY

sources: VULHUB: VHN-2061

EXTERNAL IDS

db:	BID	id:	1312	Trust: 3.6
db:	NVD	id:	CVE-2000-0482	Trust: 3.3
db:	OSVDB	id:	1379	Trust: 1.7
db:	CERT/CC	id:	VU#35958	Trust: 1.6
db:	CNNVD	id:	CNNVD-200006-024	Trust: 0.7
db:	BUGTRAQ	id:	20000605 FW-1 IP FRAGMENTATION VULNERABILITY	Trust: 0.6
db:	XF	id:	4609	Trust: 0.6
db:	XF	id:	1	Trust: 0.6
db:	SEEBUG	id:	SSVID-73893	Trust: 0.1
db:	EXPLOIT-DB	id:	19994	Trust: 0.1
db:	VULHUB	id:	VHN-2061	Trust: 0.1

sources: CERT/CC: VU#35958 // CERT/CC: VU#35958 // VULHUB: VHN-2061 // BID: 1312 // CNNVD: CNNVD-200006-024 // NVD: CVE-2000-0482

REFERENCES

url:	http://www.securityfocus.com/bid/1312	Trust: 4.3
url:	http://archives.neohapsis.com/archives/bugtraq/2000-05/0473.html	Trust: 2.7
url:	http://www.checkpoint.com/techsupport/alerts/list_vun.html#ip_fragmentation	Trust: 2.7
url:	http://www.osvdb.org/1379	Trust: 2.7
url:	https://exchange.xforce.ibmcloud.com/vulnerabilities/4609	Trust: 2.1
url:	http://www.checkpoint.com/techsupport/alerts/ipfrag_dos.html	Trust: 1.9
url:	http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2000-0482	Trust: 1.6
url:	http://xforce.iss.net/static/4609.php	Trust: 0.6
url:	http://www.checkpoint.com/products/security/firewall-1.html	Trust: 0.3

sources: CERT/CC: VU#35958 // CERT/CC: VU#35958 // VULHUB: VHN-2061 // BID: 1312 // CNNVD: CNNVD-200006-024 // NVD: CVE-2000-0482

CREDITS

Discovered by and posted to Bugtraq on June 6, 2000 by Lance Spitzner <lance@spitzner.net>.

Trust: 0.3

sources: BID: 1312

SOURCES

db:	CERT/CC	id:	VU#35958
db:	CERT/CC	id:	VU#35958
db:	VULHUB	id:	VHN-2061
db:	BID	id:	1312
db:	CNNVD	id:	CNNVD-200006-024
db:	NVD	id:	CVE-2000-0482

LAST UPDATE DATE

2024-11-22T20:38:16.959000+00:00

SOURCES UPDATE DATE

db:	CERT/CC	id:	VU#35958	date:	2001-04-05T00:00:00
db:	CERT/CC	id:	VU#35958	date:	2001-04-05T00:00:00
db:	VULHUB	id:	VHN-2061	date:	2017-10-10T00:00:00
db:	BID	id:	1312	date:	2000-06-06T00:00:00
db:	CNNVD	id:	CNNVD-200006-024	date:	2006-01-04T00:00:00
db:	NVD	id:	CVE-2000-0482	date:	2024-11-20T23:32:36.487

SOURCES RELEASE DATE

db:	CERT/CC	id:	VU#35958	date:	2000-09-26T00:00:00
db:	CERT/CC	id:	VU#35958	date:	2000-09-26T00:00:00
db:	VULHUB	id:	VHN-2061	date:	2000-06-06T00:00:00
db:	BID	id:	1312	date:	2000-06-06T00:00:00
db:	CNNVD	id:	CNNVD-200006-024	date:	2000-06-06T00:00:00
db:	NVD	id:	CVE-2000-0482	date:	2000-06-06T04:00:00