Secure Computing Corporation Information for VU#222750
TCP/IP implementations do not adequately validate ICMP error messages
- Vendor Information Help Date Notified: 12 Aug 2004
- Statement Date:
- Date Updated: 12 Apr 2005
Secure Computing has carefully analyzed the scenarios outlined in the Internet Draft, and has determined that the Sidewinder G2 responds appropriately in those situations. Some of the scenarios mentioned in this draft illustrate again the desirability of using carefully configured security appliances and using protocols such as IPsec.
The vendor has not provided us with any further information regarding this vulnerability.
If you have feedback, comments, or additional information about this vulnerability, please send us email.