CYBSEC S.A.
www.cybsec.com
http://www.cybsec.com/vulnerability_policy.pdf
A malformed packet can force the appliance to fallback to layer 2 mode. In this mode the appliance forwards all traffic without inspection.
Technical details will be released 30 days after publication of this pre-advisory. This was agreed upon with TippingPoint to allow their customers to upgrade affected software prior to technical knowledge been publicly available.
Exploiting this vulnerability, an attacker would be able to bypass all filters and detection.
TippingPoint has released a new version of the TippingPoint OS to address this vulnerability. Customers should apply the new firmware immediately.
For more information regarding the vulnerability feel free to contact the author at ariancho {at} cybsec.com.