Sybergen Secure Desktop 2.1 Multiple Vulnerabilities

Multiple vulnerabilities exist in Sybergen Secure Desktop, a personal firewall application.

Secure Desktop does not properly protect the host from spoofed ICMP type 9 router advertisements. Therefore, a malicious remote user may modify the the default gateway routing table which opens up the possibility of a number of vulnerabilities, including redirecting outbound traffic to an unauthorized source or man-in-the-middle attacks.

The firewall can be disabled by a remote user if they clear the routing table of all entries. Restarting the application is required in order to regain normal functionality.


Privacy Statement
Copyright 2010, SecurityFocus