CVE Catalog

CVE-1999-0770

Low
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Elevated risk
1.07%

61th percentile — higher than 61% of all known CVEs

Summary

Firewall-1 sets a long timeout for connections that begin with ACK or other packets except SYN, allowing an attacker to conduct a denial of service via a large number of connection attempts to unresponsive systems.

Risk Assessment

The organization may be vulnerable to denial of service attacks, which can lead to service unavailability and disruptions in system operations.

Recommendation

It is recommended to configure shorter timeouts for connections and to monitor connection attempts to detect potential attacks.

Original NVD description (English source)

Firewall-1 sets a long timeout for connections that begin with ACK or other packets except SYN, allowing an attacker to conduct a denial of service via a large number of connection attempts to unresponsive systems.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS