Jump to content

Recommended Posts

Posted

Hello,

In relation to CVE-2024-3661, we would like to know if it's possible to somehow block DHCP packets, which contain option 121 on the endpoints, through ESET Protect's Firewall?

  • Administrators
Posted

No. You can specify the following options in firewall rules:

image.png

  • Solution
Posted (edited)
9 hours ago, Georgi Stoychev said:

In relation to CVE-2024-3661,

Quote

The most effective fixes are to run the VPN inside of a virtual machine whose network adapter isn’t in bridged mode or to connect the VPN to the Internet through the Wi-Fi network of a cellular device. The research, from Leviathan Security researchers Lizzie Moratti and Dani Cronce, is available here.

https://arstechnica.com/security/2024/05/novel-attack-against-virtually-all-vpn-apps-neuters-their-entire-purpose/

-EDIT-

As far as the Wi-Fi option goes, it has a vulnerability that allows for VPN connection hijacking: https://thehackernews.com/2024/05/new-wi-fi-vulnerability-enabling.html

Edited by itman
Guest
This topic is now closed to further replies.
  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...