Image via Wikipedia
those days I’ve read on the news a lot of noise about an NSS test that were reporting a TCP handshake security hole (TCP Split Handshake Issue) in several commercial firewalls.
The question is interesting from several points of view:
are IPS and firewall really secure?
is a vulnerability really a security issue?
how does this vulnerability affect me?
- Other Considerations On TCP Split Handshake (paulsparrows.wordpress.com)
- TCP Split Handshake: Why Cisco ASA is not susceptible (paulsparrows.wordpress.com)
- TCP Split Handshake Attack Explained (paulsparrows.wordpress.com)
- Hacker ‘handshake’ hole found in common firewalls (networkworld.com)
- Cisco and NSS Labs Still Arguing Firewall Vulnerability Test Results (pcworld.com)
- Cisco Going to NSS Labs to Sort Out Alleged Firewall Issues (pcworld.com)
- Vendors Patch Firewalls After Controversial NSS Labs Test (pcworld.com)
- Firewall Security Issue Raised in Report Angers Vendors (pcworld.com)