This applies to anyone running Checkpoint Firewall-1 VPN-1.

The syslog facility (introduced in FP3 for NG) is open to denial of service attacks, maximising CPU usage on the firewall and thereby shutting off service.

See the following Check Point link for additional information:
http://www.checkpoint.com/techsuppor...ts/syslog.html

In order to protect against this vulnerability, you need to install NG FP3 HotFix 2 - you'll need to go to the Check Point Software Subscriptions Download section to get the code.

I warn all of you Enterprise admins...this is one patch you really cant afford to miss.

Ps. Out of interest who still prefers checkpoint v4.1??

Cheers
Vice$DosĀ£