Описание
Stack-based buffer overflow in Check Point VPN-1 Server 4.1 through 4.1 SP6 and Check Point SecuRemote/SecureClient 4.1 through 4.1 build 4200 allows remote attackers to execute arbitrary code via an ISAKMP packet with a large Certificate Request packet.
Ссылки
- PatchThird Party AdvisoryUS Government Resource
- PatchVendor Advisory
- PatchThird Party AdvisoryUS Government Resource
- PatchVendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:checkpoint:firewall-1:4.1:*:*:*:*:*:*:*
cpe:2.3:a:checkpoint:firewall-1:4.1:sp1:*:*:*:*:*:*
cpe:2.3:a:checkpoint:firewall-1:4.1:sp2:*:*:*:*:*:*
cpe:2.3:a:checkpoint:firewall-1:4.1:sp3:*:*:*:*:*:*
cpe:2.3:a:checkpoint:firewall-1:4.1:sp4:*:*:*:*:*:*
cpe:2.3:a:checkpoint:firewall-1:4.1:sp5:*:*:*:*:*:*
cpe:2.3:a:checkpoint:firewall-1:4.1:sp5a:*:*:*:*:*:*
cpe:2.3:a:checkpoint:firewall-1:next_generation_fp0:*:*:*:*:*:*:*
cpe:2.3:a:checkpoint:firewall-1:next_generation_fp1:*:*:*:*:*:*:*
cpe:2.3:a:checkpoint:vpn-1:4.1:sp5a:*:*:*:*:*:*
cpe:2.3:a:checkpoint:vpn-1:next_generation_fp0:*:*:*:*:*:*:*
cpe:2.3:a:checkpoint:vpn-1:next_generation_fp1:*:*:*:*:*:*:*
EPSS
Процентиль: 96%
0.25884
Средний
10 Critical
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
больше 3 лет назад
Stack-based buffer overflow in Check Point VPN-1 Server 4.1 through 4.1 SP6 and Check Point SecuRemote/SecureClient 4.1 through 4.1 build 4200 allows remote attackers to execute arbitrary code via an ISAKMP packet with a large Certificate Request packet.
EPSS
Процентиль: 96%
0.25884
Средний
10 Critical
CVSS2
Дефекты
NVD-CWE-Other