Home Page | Skip to Navigation | Skip to Content | Skip to Search | Skip to Footer

IPS-1 Protection Update - Authentication (v 15), DDOS (v 12), DHCP (v 8), Enterprise Software (v 2), Finger (v 10), FTP (v 23), IRC (v 13), LPD (v 11)

Subscribe

Check Point Reference: CPAI-2007-208
Date Published:
Severity:
Source:  
Industry Reference(s):

 
Protection Provided by: IPS-1
  • IPS-1
Who is Vulnerable?
 
Vulnerability Description
This advisory covers a set of protocol updates for the Authentication, DDOS, DHCP, Enterprise Software, Finger, FTP, IRC, and LPD protocol groups. The Authentication protocol group has been updated to ignore password strength tests for anonymous and guest users. Increased protocol compliance enforcement has been added to the FTP protocol group. The LPD protocol group has been updated to handle LPRng protocol extensions.  All protocol groups include documentation and configuration updates.
Vulnerability Details

In addition to documentation and metadata updates, the following protocol groups have been updated:

  • Authentication
    • Password strength tests are ignored for anonymous and guest users
  • DDOS
    • Stacheldradt commands are now user-editable
  • FTP
    • Improved protocol compliance enforcement
  • LPD
    • Handle LPRng protocol extensions

To configure the defense, select your product from the list below and follow the related protection steps.

IPS-1

How Can I Protect My Network?

How Do I Know if My Network is Under Attack?