CVE-1999-0770
Checkpoint Firewall-1 - Denial of Service via Long Timeout on Non-SYN Connection Attempts
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-1999-0770. PoCs published by Lance Spitzner.
AI-analyzed exploit summary This is a writeup describing a denial of service vulnerability in Checkpoint Firewall-1. The exploit involves sending ACK packets to fill the firewall's connection table, causing it to refuse subsequent connections.
Description
Firewall-1 sets a long timeout for connections that begin with ACK or other packets except SYN, allowing an attacker to conduct a denial of service via a large number of connection attempts to unresponsive systems.
Exploits (1)
This is a writeup describing a denial of service vulnerability in Checkpoint Firewall-1. The exploit involves sending ACK packets to fill the firewall's connection table, causing it to refuse subsequent connections.