Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-1651

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2006-1651
Last Modified 05 Sep 2008 05:02:28
Published 06 Apr 2006 06:04:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2006-1651

Summary

** DISPUTED ** Microsoft ISA Server 2004 allows remote attackers to bypass certain filtering rules, including ones for (1) ICMP and (2) TCP, via IPv6 packets. NOTE: An established researcher has disputed this issue, saying that "Neither ISA Server 2004 nor Windows 2003 Basic Firewall support IPv6 filtering ... This is different network protocol."

Vulnerable Systems

Application

  • Microsoft Isa Server 2004


References

BUGTRAQ - 20060404 Re: Bypassing ISA Server 2004 with IPv6

BUGTRAQ - 20060403 Bypassing ISA Server 2004 with IPv6

BUGTRAQ - 20060410 Re: Bypassing ISA Server 2004 with IPv6

BUGTRAQ - 20060405 Re: Re: Bypassing ISA Server 2004 with IPv6


Last Updated: 27 May 2016 10:42:09