PT-2004-1589 · Check Point · Check Point Vpn-1+2

Publicado

2004-05-14

Atualizado

2017-07-11

CVE-2004-0469

CVSS v2.0

Alta

Vetor

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Check Point VPN-1 versions prior to R55 HFA-03 Check Point VPN-1 versions prior to R54 HFA-410 Check Point FireWall-1 NG versions prior to NG FP3 HFA-325 Check Point VPN-1 SecuRemote/SecureClient versions prior to R56

Description The issue is related to a buffer overflow in the ISAKMP functionality, which may allow remote attackers to execute arbitrary code during VPN tunnel negotiation.

Recommendations For Check Point VPN-1 versions prior to R55 HFA-03, update to R55 HFA-03 or later. For Check Point VPN-1 versions prior to R54 HFA-410, update to R54 HFA-410 or later. For Check Point FireWall-1 NG versions prior to NG FP3 HFA-325, update to NG FP3 HFA-325 or later. For Check Point VPN-1 SecuRemote/SecureClient versions prior to R56, update to R56 or later.

Correção

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Identificadores relacionados

CVE-2004-0469

Produtos afetados

Check Point Firewall-1

Check Point Vpn-1

Check Point Vpn-1 Securemote/Secureclient

PT-2004-1589 · Check Point · Check Point Vpn-1+2

CVE-2004-0469

Identificadores relacionados

Produtos afetados

Referências · 5