RE: Check Point FW-1 NG FP3 & FP3 HF1: DoS attack against syslog daemon possible

["Hines, Eric" <ehin4 () allstate com>]

Alright. I was just concerned because of the wording Checkpoint used on
their web site.
"Prior to the release of NG FP3 HF2......."

I'm going to assume they were referring to the HF2 portion of that, and not
< FP3


Eric Hines



-----Original Message-----
From: dchesterfield () bankofny com [mailto:dchesterfield () bankofny com]
Sent: Friday, March 21, 2003 12:53 PM
To: Hines, Eric
Cc: Maillist Bugtraq; Dr. Peter Bieringer
Subject: Re: Check Point FW-1 NG FP3 & FP3 HF1: DoS attack against
syslog daemon possible



The daemon was apparently only introduced since FP3



 

                      "Hines, Eric"

                      <ehin4@allstate.c        To:       "Dr. Peter
Bieringer" <pbieringer () aerasec de>, Maillist Bugtraq                 
                      om>                       <bugtraq () securityfocus com>

                                               cc:

                      21/03/2003 06:31         Subject:  Re: Check Point
FW-1 NG FP3 & FP3 HF1: DoS attack against syslog        daemon  
                      pm                        possible

 





Has anyone tested these vulnerabilities on NG FP1 or are they strictly
related to FP3?

Eric Hines




-----Original Message-----
From: Dr. Peter Bieringer [mailto:pbieringer () aerasec de]
Sent: Friday, March 21, 2003 6:47 AM
To: Maillist Bugtraq; Maillist full-disclosure
Subject: Check Point FW-1 NG FP3 & FP3 HF1: DoS attack against syslog
daemon possible


Hi all,

interesting for all Check Point FW-1 NG users which have enabled the
since
FP3 included syslog daemon.