First published: Thu Jul 29 1999(Updated: )
Firewall-1 sets a long timeout for connections that begin with ACK or other packets except SYN, allowing an attacker to conduct a denial of service via a large number of connection attempts to unresponsive systems.
Credit: cve@mitre.org cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Check Point FireWall-1 | =3.0 | |
Check Point FireWall-1 | =4.0 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-1999-0770 is considered a high severity vulnerability due to its ability to allow denial of service attacks.
To mitigate CVE-1999-0770, update your Check Point FireWall-1 software to a patched version that addresses this vulnerability.
CVE-1999-0770 affects Check Point FireWall-1 versions 3.0 and 4.0.
An attacker can exploit CVE-1999-0770 to launch a denial of service attack by overwhelming the firewall with connection attempts.
While CVE-1999-0770 was identified over two decades ago, it remains relevant for legacy systems that have not been updated.