PT-2005-3751 · Check Point · Check Point Ngx R60

Fitz

Published

2005-09-14

Updated

2016-10-18

CVE-2005-2889

CVSS v2.0

7.5

High

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions Check Point NGX R60

Description The issue arises from improper verification of packets against the predefined service group "CIFS" rule, allowing remote attackers to bypass intended restrictions.

Recommendations For Check Point NGX R60, update the rule configuration to properly verify packets against the "CIFS" service group to prevent bypassing of intended restrictions.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2005-2889

Affected Products

Check Point Ngx R60

PT-2005-3751 · Check Point · Check Point Ngx R60

CVE-2005-2889

Related Identifiers

Affected Products

References · 3