A friend of mine and I downloaded the current Beta version of ASL (V 1.737) and have been running it through some tests to see what it can do for us. We came across the following problem and thought you might want to be aware of it.
FYI: Nessus and Saint both noted the kernel as being "Linux 2.3.49".
========================================
general/udp (Security hole found)
[ back to the list of ports ]
Vulnerability found on port general/udp
It was possible to crash the
remote server using the linux 'zero fragment' bug.
A cracker may use this flaw to prevent your
network from working properly.
Solution : if the remote host is a Linux server, then install
a newer kernel (2.2.4). If it is not, then contact your vendor
for a patch.
Risk factor : High
CVE : CAN-1999-0431
This file was generated by Nessus, the open-sourced security scanner.
========================================
This thread was automatically locked due to age.
