IBM SecureWay Firewall Denial of Service Vulnerability

info
discussion
exploit
solution
references

IBM SecureWay Firewall Denial of Service Vulnerability

A vulnerability has been discovered in IBM SecureWay Firewall for the AIX operating system.

Reportedly, a problem exists in the SecureWay firewall stack implementation, making it prone to a denial of service when processing TCP packets with zero bit flags.

To reach a denial of service condition, 2.8Mbps of malicious requests must be sent to the vulnerable firewall.