PT-2004-1589 · Check Point · Check Point Vpn-1+2

Published

2004-05-14

Updated

2017-07-11

CVE-2004-0469

CVSS v2.0

High

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Check Point VPN-1 versions prior to R55 HFA-03 Check Point VPN-1 versions prior to R54 HFA-410 Check Point FireWall-1 NG versions prior to NG FP3 HFA-325 Check Point VPN-1 SecuRemote/SecureClient versions prior to R56

Description The issue is related to a buffer overflow in the ISAKMP functionality, which may allow remote attackers to execute arbitrary code during VPN tunnel negotiation.

Recommendations For Check Point VPN-1 versions prior to R55 HFA-03, update to R55 HFA-03 or later. For Check Point VPN-1 versions prior to R54 HFA-410, update to R54 HFA-410 or later. For Check Point FireWall-1 NG versions prior to NG FP3 HFA-325, update to NG FP3 HFA-325 or later. For Check Point VPN-1 SecuRemote/SecureClient versions prior to R56, update to R56 or later.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2004-0469

Affected Products

Check Point Firewall-1

Check Point Vpn-1

Check Point Vpn-1 Securemote/Secureclient

PT-2004-1589 · Check Point · Check Point Vpn-1+2

CVE-2004-0469

Related Identifiers

Affected Products

References · 5