CVE-2007-3489

Name of the Vulnerable Software and Affected Versions Check Point VPN-1 Edge X Embedded NGX version 7.0.33x

Description A cross-site request forgery (CSRF) issue exists in the management interface, specifically in pop/WizU.html, allowing remote attackers to perform actions with administrative privileges. This can be achieved by sending a request with the swuuser and swupass parameters, which can add an administrator account. The management interface lacks a logout capability, making it vulnerable to CSRF attacks without any timing restrictions.

Recommendations For Check Point VPN-1 Edge X Embedded NGX version 7.0.33x, consider disabling access to the pop/WizU.html page in the management interface until a fix is available, and restrict the use of the swuuser and swupass parameters to minimize the risk of exploitation.