[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] RE: [FW1] CERT Advisory CA-2001-17 Check Point RDP Bypass Vulnerability
Pradeepa, That's exactly the point: Some -eg. myself- say you aren't but there seems to be some confusion about this. I hope it gets cleared up once and for all soon... Or maybe it already has? Right now the list is making me crazy, I'm not getting all postings and my name gets truncated to "gue" although all other mail programs can extend the sender to "Ralf Guenthner". In a discussion like this, it's not very helpful to not get all replies... How is the list working for everyone else? Do you think you're getting everything? Cheers Ralf G. z+z+z+z+z++z++z+z+z+++z+z++z++z+++z+++z+++z++z+z+z+z++z Ralf Guenthner, Senior IT Security Consultant Zentric GmbH & Co. KG - IT Security & Groupware Solutions Office Phone: +49-6101-556060 Fax: +49-6101-556065 mailto:[email protected] http://www.zentric.com +z+z+z+z+z++z++z+z+z+++z+z++z++z+++z+++z+++z++z+z+z+z++z "Pradeepa G" <[email protected]> Sent by: To: "Amin Tora" <[email protected]>, [email protected] "FW-1-MailingList (E-mail)" kpoint.com <[email protected]> cc: Subject: RE: [FW1] CERT Advisory CA-2001-17 Check 11.07.01 09:52 Point RDP Bypass Vulnerability Hi, Does that mean, that if we have not enabled " Accept Firewall-1 control connections", then, we are not affected by this vulnerability at all?? rgds, Pradeepa -----Original Message----- From: Amin Tora [mailto:[email protected]] Sent: Tuesday, July 10, 2001 3:47 AM To: FW-1-MailingList (E-mail) Subject: [FW1] CERT Advisory CA-2001-17 Check Point RDP Bypass Vulnerability If you have not heard yet: There is a unique vulnerability with Check Point VPN-1 and FireWall-1 version 4.1. This vulnerability will directly affect you if: -You have "ACCEPT VPN-1/FireWall-1 Control Connections" checked under your Policy Properties->Security tab. See following for details: http://www.inside-security.de/advisories/fw1_rdp.html http://www.checkpoint.com/techsupport/alerts/ http://www.kb.cert.org/vuls/id/310295 Amin Tora, CISSP ePlus Technology http://www.eplus.com NASDAQ: PLUS ======================================================================== ======== To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ======================================================================== ======== ================================================================================ To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================================================ ================================================================================ To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================================================
|