Описание
Check Point FireWall-1 SecuRemote/SecuClient 4.0 and 4.1 allows clients to bypass the "authentication timeout" by modifying the to_expire or expire values in the client's users.C configuration file.
Ссылки
- Vendor Advisory
- PatchVendor Advisory
- ExploitPatchVendor Advisory
- Vendor Advisory
- PatchVendor Advisory
- ExploitPatchVendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:checkpoint:check_point_vpn:1_4.1:*:*:*:*:*:*:*
cpe:2.3:a:checkpoint:check_point_vpn:1_4.1_sp1:*:*:*:*:*:*:*
cpe:2.3:a:checkpoint:check_point_vpn:1_4.1_sp2:*:*:*:*:*:*:*
cpe:2.3:a:checkpoint:check_point_vpn:1_4.1_sp3:*:*:*:*:*:*:*
cpe:2.3:a:checkpoint:check_point_vpn:1_4.1_sp4:*:*:*:*:*:*:*
cpe:2.3:a:checkpoint:firewall-1:4.0:*:*:*:*:*:*:*
cpe:2.3:a:checkpoint:firewall-1:4.0:sp1:*:*:*:*:*:*
cpe:2.3:a:checkpoint:firewall-1:4.0:sp2:*:*:*:*:*:*
cpe:2.3:a:checkpoint:firewall-1:4.0:sp3:*:*:*:*:*:*
cpe:2.3:a:checkpoint:firewall-1:4.0:sp4:*:*:*:*:*:*
cpe:2.3:a:checkpoint:firewall-1:4.0:sp5:*:*:*:*:*:*
cpe:2.3:a:checkpoint:firewall-1:4.0:sp6:*:*:*:*:*:*
cpe:2.3:a:checkpoint:firewall-1:4.0:sp7:*:*:*:*:*:*
cpe:2.3:a:checkpoint:firewall-1:4.0:sp8:*:*:*:*:*:*
cpe:2.3:a:checkpoint:firewall-1:4.1:*:*:*:*:*:*:*
cpe:2.3:a:checkpoint:firewall-1:4.1:sp1:*:*:*:*:*:*
cpe:2.3:a:checkpoint:firewall-1:4.1:sp2:*:*:*:*:*:*
cpe:2.3:a:checkpoint:firewall-1:4.1:sp3:*:*:*:*:*:*
cpe:2.3:a:checkpoint:firewall-1:4.1:sp4:*:*:*:*:*:*
cpe:2.3:a:checkpoint:firewall-1:4.1:sp5:*:*:*:*:*:*
cpe:2.3:a:checkpoint:next_generation:*:*:*:*:*:*:*:*
EPSS
Процентиль: 63%
0.00455
Низкий
7.5 High
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
больше 3 лет назад
Check Point FireWall-1 SecuRemote/SecuClient 4.0 and 4.1 allows clients to bypass the "authentication timeout" by modifying the to_expire or expire values in the client's users.C configuration file.
EPSS
Процентиль: 63%
0.00455
Низкий
7.5 High
CVSS2
Дефекты
NVD-CWE-Other