Title: Sygate Secure Enterprise Remote Denial Of Service Vulnerability
Severity: MODERATE
Description:
Sygate Secure Enterprise is a set of security products that include intrusion detection and firewall, an enterprise security policy management utility is also included; it consists of a server and multiple agents called Sygate Security Agent. The Sygate Secure Enterprise communication is over HTTP.
Sygate Secure Enterprise is reported prone to a denial of service vulnerability. The issue is reported to exist due to the weak methods used for communication between the agents and the server. It is reported that communication sessions do not include any type of unique identifier to protect against replay-style attacks.
It is reported that an attacker who can capture a valid Sygate Secure Enterprise protocol session, may replay this session continuously and in doing so exhaust resources on the Sygate Secure Enterprise server. This may result in a denial of service to legitimate users.
All versions of Sygate Secure Enterprise prior to 3.5MR3 are reported to be prone to this vulnerability.
Affected Products:
- Sygate Secure Enterprise 3.0.0
- Sygate Secure Enterprise 3.5.0
- Sygate Secure Enterprise 3.5.0 MR1
- Sygate Secure Enterprise 3.5.0 MR3
- Sygate Security Agent 3.0.0
- Sygate Security Agent 3.5.0 build 2576
- Sygate Security Agent 3.5.0 build 2577
- Sygate Security Agent 4.0.0
References:
- Sygate: Sygate Homepage
Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.
