US Cert Vulnerability Note #464113 - TCP SYN (FIN)



  • This is old, so I am sure it is taken care of, but since freebsd is listed as unknown I need to find out for sure(so I can mark it off the list for the auditors).

    http://www.kb.cert.org/vuls/id/464113

    Here is the summary from the vulnerability scan:
    The remote host does not discard TCP SYN packets which have the FIN flag set. Depending on the kind of firewall you are using, an attacker may use this flaw to bypass its rules.

    Could someone confirm for me that pfsense/freebsd is not vulnerable to this?

    Thanks


Log in to reply