McAfee Firewall Enterprise is not vulnerable to the “TCP Split Handshake” attack. All versions of McAfee Firewall Enterprise protect against this attack, regardless of patch level or configuration. McAfee has confirmed this protection via lab testing using published attack tools, as well as code and architecture review to confirm no similar vulnerability exists.
When successful, the “TCP Split Handshake” attack causes a network security device to allow traffic without applying the configured security policy. Recently, security researchers and some test labs have drawn attention to this attack. The test lab named one firewall vendor (not McAfee Firewall Enterprise) as being not vulnerable to this attack (out of numerous tested). McAfee Firewall Enterprise was not part of the lab testing effort.
Don't forget, when your helpful posts earn a kudos or get accepted as a solution you can unlock perks and badges. Those aren't the only badges, either. How many can you collect? Click here to learn more.
Community Help Hub
New to the forums or need help finding your way around the forums? There's a whole hub of community resources to help you.