TCP Source Port Pass Firewall-

Vulnerabilities (3)  

 QID:34000Category:FirewallCVE ID:-Vendor Reference-Bugtraq ID:-Service Modified:07/10/2017User Modified:-Edited:NoPCI Vuln:Yes
 
THREAT:Your firewall policy seems to let TCP packets with a specific source port pass through.
 
IMPACT:Some types of requests can pass through the firewall. The port number listed in the results section of this vulnerability report is the source port that unauthorized users can use to bypass your firewall.
 
SOLUTION:Make sure that all your filtering rules are correct and strict enough. If the firewall intends to deny TCP connections to a specific port, it should be configured to block all TCP SYN packets going to this port, regardless of the source port.
 
COMPLIANCE:Not Applicable
 
EXPLOITABILITY:There is no exploitability information for this vulnerability.
 
ASSOCIATED MALWARE:There is no malware information for this vulnerability.
 
RESULTS:The host responded 4 times to 4 TCP SYN probes sent to destination port 53 using source port 53. However, it did not respond at all to 4 TCP SYN probes sent to the same destination port using a random source port.