CVE-2014-1672

Name of the Vulnerable Software and Affected Versions Check Point R75.47 Security Gateway and Management Server

Description The issue is related to a lack of proper enforcement of Anti-Spoofing when the routing table is modified and the "Get - Interfaces with Topology" action is performed. This allows attackers to bypass intended access restrictions. The vulnerability is also associated with insufficient access control to certain features, which can be exploited by a remote attacker to bypass existing access restrictions and conduct spoofing attacks.

Recommendations For Check Point R75.47 Security Gateway and Management Server, consider restricting access to the "Get - Interfaces with Topology" action until a patch is available. As a temporary workaround, review and modify the routing table configuration to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.