|
|
|
|
| |
| NetScreen Technologies are the manufacturers of some of the industry's highest quality VPN and firewall equipment. The NetScreen product has been found to be vulnerable to the SSH1 CRC32 attack. |
| |
Credit:
The information has been provided by Erik Parker of Digital Defense, Inc.
|
| |
In February of 2001, BindView's RAZOR Team announced the SSH1 CRC32 compensation attack detector bug. After all was said and done, several vendors found their SSH implementations were vulnerable.
By default the NetScreen does not ship with SSH enabled, and NetScreen usually doesn't encourage their customers to even access the CLI on their devices. However, in the GUI you can enabled SSH, and disable telnet. This only opens SSH on the trusted interfaces, unless you specifically add rules to forward to this interface/port. On a normal system with SSH enabled, the unit will only be vulnerable to attackers on the trusted side.
If you use any of the CRC32 exploits out there, the unit will crash immediately, and require a hard reboot. It does not appear from our analysis that anything more than a crash can occur from this.
Vendor response:
As a temporary solution until NetScreen can release a new ScreenOS, you could disable SSH if this is a viable option for you.
So, it would appear NetScreen did NOT miss the CRC32 bugs that came out, and it's just a new one.
|
|
|
|
|
|
|
|
|
|
