PT-2014-2013 · Check Point · Check Point Security Gateway

Published

2014-03-24

Updated

2017-09-08

CVE-2014-8950

CVSS v2.0

7.1

High

Vector

AV:N/AC:M/Au:N/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions Check Point Security Gateway versions R77 through R77.10

Description The issue is related to resource release errors in the Check Point Security Gateway. It can be exploited by a remote attacker using specially crafted HTTPS requests, potentially leading to a denial of service (crash). This is particularly relevant when the URL Filtering or Identity Awareness blade is in use.

Recommendations For versions R77 through R77.10, consider temporarily restricting access to the HTTPS endpoint to minimize the risk of exploitation until a patch is available. As a temporary workaround, consider disabling the URL Filtering or Identity Awareness blade until a fix is provided.

Fix

Improper Resource Release

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-404

Related Identifiers

BDU:2019-03760

CVE-2014-8950

Affected Products

Check Point Security Gateway

PT-2014-2013 · Check Point · Check Point Security Gateway

CVE-2014-8950

Weakness Enumeration

Related Identifiers

Affected Products

References · 8