Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

WinGate < 6.2.0 Compressed Name Pointer DoS

Medium

Synopsis

The remote proxy is affected by a denial of service vulnerability.

Description

The remote host appears to be running WinGate, a Windows application for managing and securing Internet access. The version of WinGate installed on the remote host contains a flaw involving the processing of DNS requests with compressed name pointers. By sending a specially-crafted DNS request to a UDP port on which WinGate is listening, an unauthenticated remote attacker can cause the affected application to consume 100% of the available CPU, thereby denying service to legitimate users.

Solution

Upgrade to version 6.2.0 or higher.