https://www.exploit-db.com/exploits/21915
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200212-557

很多PC防火墙具有对恶意攻击自动阻挡功能。多家厂商的PC防火墙的自动阻挡功能存在设计问题，远程攻击者可以利用这个漏洞进行拒绝服务攻击。在默认安装的情况下，多种个人防火墙软件拥有自动阻挡(auto-block)功能，它能对恶意攻击的源地址进行自动阻挡，如果攻击者以伪造地址向个人防火墙发送一种高危险级别的攻击，这些防火墙会自动的不进行任何调协的情况下阻挡这个IP地址，这样如果发送大量包含不同IP地址的伪造包，可导致远程PC防火墙系统阻挡大量Internet地址。

source: http://www.securityfocus.com/bid/5917/info

A weakness has been reported in some PC Firewall packages that could allow remote denial of service attacks. The problem is in the handling of spoofed traffic.

Under some circumstances, it is possible for remote users to deny service to various sites for users of PC Firewall software. By sending spoofed traffic that could be deemed malicious by the firewall software package, an attacker could effectively limit the sites a system is capable of reaching.

hping -e 13 -d 2 -s 6000 -p 2140 -2 host1.example.com -c 2 -a host2.example.com

来源:BID
名称:5917
链接:http://www.securityfocus.com/bid/5917
来源:XF
名称:firewall-autoblock-spoofing-dos(10314)
链接:http://www.iss.net/security_center/static/10314.php
来源:BUGTRAQ
名称:20021008MultipleVendorPCfirewallremotedenialofservicesVulnerability
链接:http://online.securityfocus.com/archive/1/294411
来源:BUGTRAQ
名称:20021008Re:MultipleVendorPCfirewallremotedenialofservicesVulnerability
链接:http://archives.neohapsis.com/archives/bugtraq/2002-10/0156.html
来源：NSFOCUS
名称：3634
链接：http://www.nsfocus.net/vulndb/3634