CVE-2002-1979

Name of the Vulnerable Software and Affected Versions WatchGuard SOHO products versions 5.1.6 and earlier Vclass/RSSA versions 3.2 SP1 and earlier

Description The issue allows remote attackers to bypass firewall rules by sending a PASV command string as the argument of another command to an FTP server. This generates a response that contains the string, causing IPFilter to treat the response as if it were a legitimate PASV command from the server.

Recommendations For WatchGuard SOHO products versions 5.1.6 and earlier, update to a version later than 5.1.6 to resolve the issue. For Vclass/RSSA versions 3.2 SP1 and earlier, update to a version later than 3.2 SP1 to resolve the issue. As a temporary workaround, consider restricting access to the FTP server to minimize the risk of exploitation.