Axent Raptor Firewall Zero Length IP Remote DoS

This script is Copyright (C) 1999-2014 Tenable Network Security, Inc.


Synopsis :

It is possible to crash the remote device

Description :

It is possible to make the remote Axent raptor freeze by sending it a
IP packet containing special options (of length equals to 0)

An attacker may use this flaw to make the remote firewall crash
continuously, thus preventing the network from working properly.

Solution :

Filter the incoming IP traffic containing IP options, and contact
Axent for a patch

Risk factor :

High / CVSS Base Score : 7.8
(CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C)
CVSS Temporal Score : 7.4
(CVSS2#E:H/RL:W/RC:ND)
Public Exploit Available : true

Family: Firewalls

Nessus Plugin ID: 10022 (axent_raptor_dos.nasl)

Bugtraq ID: 736

CVE ID: CVE-1999-0905