Update Protection against Microsoft Windows Kernel TCP/IP ICMP Vulnerability (MS08-001)
| Check Point Reference: | CPAI-2008-004 | |
| Date Published: | ||
| Severity: | ||
| Last Updated: | ||
| Source: | Microsoft Security Bulletin MS08-001 | |
| Industry Reference(s): | CVE-2007-0066 | |
| Protection Provided by: |
VPN-1
|
|
| Who is Vulnerable? Microsoft Windows 2000 SP4 Microsoft Windows XP SP2 Microsoft Windows XP Professional x64 Edition Microsoft Windows XP Professional x64 Edition SP2 Microsoft Windows Server 2003 SP1/SP2 Microsoft Windows Server 2003 x64 Edition Microsoft Windows Server 2003 SP1/SP2 for Itanium-based Systems | ||
| Vulnerability Description A denial of service vulnerability exists in Windows TCP/IP. A remote attacker can exploit the vulnerability by sending a specially crafted ICMP packet to a computer over the network. An attacker who successfully exploited this vulnerability could cause a denial of service on the affected system. |
||
|
Update/Patch Available Apply patches: Microsoft Security Bulletin MS08-001 |
|
|
Vulnerability Details This vulnerability is due to an error in the way Windows TCP/IP stack handles specially crafted ICMP packets. A remote attacker could exploit this issue via specially crafted ICMP packets sent to the vulnerable interface. Successful exploitation of this vulnerability could allow a denial of service on the affected system. |
Protection Overview
By enabling this protection, SmartDefense will detect and block any malicious ICMP packet attempting to exploit this vulnerability.
In order for the protection to be activated, update your VPN-1/InterSpect/Connectra/IPS-1 product to the latest SmartDefense update. For information on how to update SmartDefense, go to SBP-2006-05, Protection tab and select the version of your choice.
To configure the defense, select your product from the list below and follow the related protection steps.