Check Point response to "Jedi Packet Trick" (CVE-2010-0104)

Support Center > Search Results > SecureKnowledge Details

Solution ID	sk44584
Product	UTM-1, IPS-1, IP Appliances, Edge, Power-1
Version	All
Platform / Model	All
Date Created	13-Apr-2010
Last Modified	06-Aug-2017

Symptoms

During the CanSecWest international conference in Vancouver researchers described how an attacker could remotely take full control of a particular network card model. For more details see the following presentations:
- Can you still trust your network card?
- The Jedi Packet Trick takes over the Deathstar
This issue affects the following Broadcom NICs: Broadcom BCM5751, BCM5752, BCM5753, BCM5754, BCM5755, BCM5756, BCM5764 and BCM5787 with firmware up to and including v8.04, BCM57760 with firmware up to and including v8.07, and BCM5761 with firmware up to and including v1.24.0.9.

Solution

Check Point appliances do not use Broadcom NICs, and therefore are not vulnerable to this attack.

Notes:

SecurePlatform Certified Open Servers listed in the Gaia and SecurePlatform Hardware Compatibility List do not use the vulnerable NIC models.

Machines produced under the Integrated Appliance Solutions program do not use the vulnerable NIC models.

Give us Feedback

Please rate this document

[1=Worst,5=Best]

Comment
	Submitting rating