Description
The DNS module in Arkoon FAST360 UTM appliances 3.0 up to 3.0/29, 3.1 through 3.3, and 4.0 allows remote attackers to cause a denial of service (reboot) via a malformed DNS message, as demonstrated by the PROTOS DNS testing suite.
Affected products
- arkoon / fast3603.0 – 3.0
- arkoon / fast3603.0_29 – 3.0_29
- arkoon / fast3603.1 – 3.1
- arkoon / fast3603.2 – 3.2
- arkoon / fast3603.3 – 3.3
- arkoon / fast3604.0_1 – 4.0_1
References
- MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/27004
- MISChttp://www.arkoon.fr/upload/alertes/33AK-2006-02-EN-1.0_FAST_DNS_DOS.pdf
- VENDOR_ADVISORYhttp://www.vupen.com/english/advisories/2006/2217
- VENDOR_ADVISORYhttp://secunia.com/advisories/20618
- MISChttp://www.ee.oulu.fi/research/ouspg/protos/testing/c09/dns/index.html