Intoto Information for VU#328867
Multiple vendors' firewalls do not adequately keep state of FTP traffic
- Vendor Information Help Date Notified:
- Statement Date:
- Date Updated: 09 Oct 2002
iGateway firewall's TCP re-transmission engine does not let partially acknowledged TCP segment's re-transmissions pass through the firewall, which is a root cause of this vulnerability. This design philosophy makes iGateway firewall withstand these kinds of TCP re-transmission attacks.
The vendor has not provided us with any further information regarding this vulnerability.
The CERT/CC has no additional comments at this time.
If you have feedback, comments, or additional information about this vulnerability, please send us email.