[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] [FW1] Scanner found Firewall-1 S/Key Authentication Vulnerability
Hi, I ran a scan on our FW-1 and it found the following: Scanner found Firewall-1 S/Key Authentication Vulnerability Description: In some versions of FireWall-1, the implementation of S/Key authentication uses a poor source of entropy in regeneration of chains, and is therefore susceptible to a simple brute force attack. Weak or easily bypassed authentication mechanisms could provide attackers with a simple avenue of approach to penetrate your network and mount further attacks against internal systems. Suggestion: Checkpoint has produced a patch to address this issue. If your firewall is found to be vulnerable to this check, you should upgrade to the latest version immediately. Where is this patch? I could not find it? Any one have anything to add about this issue? Thanks! /ap
================================================================================ To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================================================
|