3COM-06-003
TippingPoint™ IPS Page Fault vulnerability

July 21, 2006

CVE ID:
CVE-2006-3678

Affected Vendor:
3Com TippingPoint

Affected Products:
TippingPoint IPS running TOS versions prior to 2.2.4.6519

Severity Assessment : High

Vulnerability Details:
TippingPoint has identified a vulnerability in the TippingPoint Operating System (TOS). This vulnerability can allow remote attackers to cause a page fault on the IPS and force the device into layer 2 fallback (L2FB). Depending on how the IPS is configured, L2FB will either block all traffic flowing through the device or will allow all traffic to pass uninspected.

This specific flaw is triggered with a specially crafted malformed packet.

Update Availability:
This issue has been addressed in TippingPoint IPS TOS release version 2.2.4.6519. Customers can obtain the update from the Threat Management Center: http://tmc.tippingpoint.com.

Workarounds:
Upgrade to TOS 2.2.4.6519.

Credit:
This vulnerability was discovered by Andres Riancho of Cybsec Security Systems

Support:
Technical support is available by contacting TippingPoint Technical Support at 866-681-8324.