SecurityTracker: Windows Vista Firewall Teredo Interface Discloses Network Information to Remote Users and May Let Remote Users Bypass Firewall Rules

	Keep Track of the Latest Vulnerabilities with SecurityTracker!

Home | View Topics | Search | Contact Us |

SecurityTracker
Archives

Sign Up for Your FREE Weekly SecurityTracker E-mail Alert Summary

Instant Alerts

Buy our Premium Vulnerability Notification Service to receive customized, instant alerts

Put SecurityTracker Vulnerability Alerts on Your Web Site -- It's Free!

Become a Partner and License Our Database or Notification Service

Report a Bug

Report a vulnerability that you have found to SecurityTracker
bugs
@
securitytracker.com

Category: Application (Firewall) > Windows Vista Firewall

Vendors: Microsoft

Windows Vista Firewall Teredo Interface Discloses Network Information to Remote Users and May Let Remote Users Bypass Firewall Rules

SecurityTracker Alert ID: 1018354

SecurityTracker URL: http://securitytracker.com/id/1018354

CVE Reference: CVE-2007-1535, CVE-2007-3038 (Links to External Site)

Updated: Jul 10 2007

Original Entry Date: Jul 10 2007

Impact: Disclosure of system information, Host/resource access via network

Fix Available: Yes Vendor Confirmed: Yes

Description: A vulnerability was reported in the Windows Vista Firewall. A remote user can gain information about the target network and may be able to bypass the firewall.

A remote user can activate the Teredo interface in certain cases to cause the interface to disclose the target system's Teredo network address.

A remote user can connect to any port on the target system that is accessible on the local network.

A remote user may also be able to, via tunneling, connect with other network systems.

Microsoft credits Jim Hoagland and Ollie Whitehouse of Symantec with reporting this vulnerability.

Impact: A remote user can gain information about the target network.

A remote user may be able to bypass the firewall rules.

Solution: The vendor has issued the following fixes:

Windows Vista:

http://www.microsoft.com/downloads/details.aspx?FamilyId=e9b64746-6afa-4a30-833d-e058e000c821

Windows Vista x64 Edition:

http://www.microsoft.com/downloads/details.aspx?FamilyId=0df5d190-3ad7-42d5-8629-43c47ec450cb

A restart is required.

The Microsoft advisory is available at:

http://www.microsoft.com/technet/security/bulletin/ms07-038.mspx

Vendor URL: www.microsoft.com/technet/security/bulletin/ms07-038.mspx (Links to External Site)

Cause: Access control error, State error

Underlying OS: Windows (Vista)

Message History: None.

Source Message Contents

Date: Tue, 10 Jul 2007 14:13:24 -0400
Subject: Microsoft Security Bulletin MS07-038 - Moderate: Vulnerability in Windows Vista Firewall Could Allow Information Disclosure (935807)


http://www.microsoft.com/technet/security/bulletin/ms07-038.mspx

CVE-2007-1535
CVE-2007-3038

Go to the Top of This SecurityTracker Archive Page

Home | View Topics | Search | Contact Us
Copyright 2012, SecurityGlobal.net LLC