PGPFire Desktop Firewall ICMP Fingerprinting
Source: Xatrix
When PGPfire is installed on a system, the default Windows TCP stack is replaced with a PGPfire versione. The altered TCP stack produces responses uncharacteristic of any other operating system.
This allows a remote user to fingerprint and identify sensitive systems, and could result in an organized attack against sensitive/vulnerable resources.
Currently there are no known solutions/fixes/upgrades. Our only suggestion is to use other desktop firewall solution instead of PGPfire.
Discovered by Ofir Arkin (ofir at stake.com).