[Date Prev][Date Next][Thread Prev][Thread Next][Thread Index]
Re: [fw1-gurus] Critical Security Vulnerability in Nokia IPSO with SecureXL and NAT
- Subject: Re: [fw1-gurus] Critical Security Vulnerability in Nokia IPSO with SecureXL and NAT
- From: Dameon Welch-Abernathy <dwelch@xxxxxxxxxxxx>
- To: FireWall-1 Gurus Mailinglist <fw1-gurus@xxxxxxxxxxxxxxxxxx>
- Date: Mon, 26 Jan 2009 22:42:00 -0800
On Mon, Jan 26, 2009 at 7:33 PM, Rajeev Gupta <rgup14@xxxxxxxxx> wrote:
> Yeah, got email notification from Nokia. Not sure if the vulnerability
> exists if just 'flows' is enabled rather than SecureXL?
The vulnerability is specific to SecureXL when traffic subject to NAT
is allowed by the security policy. If you're just using flows, you are
not vulnerable.
-- PhoneBoy
_______________________________________________
fw1-gurus mailing list
fw1-gurus@xxxxxxxxxxxxxxxxxx
http://lists.phoneboy.com/listinfo.cgi/fw1-gurus-phoneboy.com
|