Signature Detail

APP: Windows Firewall Teredo Information Disclosure

This signature detects Microsoft Teredo packets. Windows Firewall does not properly filter these packets. This vulnerability can allow incoming unsolicited network traffic to access a network interface, potentially enabling an attacker to gather information on the affected host.

Extended Description

Windows Firewall for Windows Vista is prone to a vulnerability that may permit a bypass of existing firewall rules. An attacker may trigger this vulnerability by sending malicious network data through the Teredo network transport system to obtain sensitive information; other attacks are also possible. Note that Windows Vista systems configured with a 'Public' network profile are not vulnerable to this issue.

Affected Products

• Avaya Customer Interaction Express (CIE) User Interface 1.0.2
• Microsoft Windows Vista Beta
• Microsoft Windows Vista Beta 1
• Microsoft Windows Vista Beta 2
• Microsoft Windows Vista Business
• Microsoft Windows Vista Enterprise
• Microsoft Windows Vista Home Basic
• Microsoft Windows Vista Home Premium
• Microsoft Windows Vista Ultimate
• Microsoft Windows Vista
• Microsoft Windows Vista x64 Edition

References

• BugTraq: 24779
• CVE: CVE-2007-3038
• URL: http://www.microsoft.com/technet/security/Bulletin/MS07-038.mspx