CVE-2013-7304

Name of the Vulnerable Software and Affected Versions Check Point Endpoint Security MI Server versions through R73 3.0.0 HFA2.5

Description The issue allows man-in-the-middle attackers to spoof SSL servers by presenting an arbitrary certificate during a session established by a client, due to the lack of X.509 certificate validation for client devices.

Recommendations For Check Point Endpoint Security MI Server versions through R73 3.0.0 HFA2.5, consider configuring X.509 certificate validation for client devices to prevent man-in-the-middle attacks. As a temporary workaround, restrict access to sensitive resources until a proper fix is applied. At the moment, there is no information about a newer version that contains a fix for this vulnerability.