Описание
Buffer overflow in the ISAKMP functionality for Check Point VPN-1 and FireWall-1 NG products, before VPN-1/FireWall-1 R55 HFA-03, R54 HFA-410 and NG FP3 HFA-325, or VPN-1 SecuRemote/SecureClient R56, may allow remote attackers to execute arbitrary code during VPN tunnel negotiation.
Ссылки
- PatchVendor Advisory
- PatchVendor Advisory
- PatchVendor Advisory
- PatchVendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:checkpoint:firewall-1:*:*:vsx-ng-ai:*:*:*:*:*
cpe:2.3:a:checkpoint:firewall-1:2.0:*:gx:*:*:*:*:*
cpe:2.3:a:checkpoint:firewall-1:2.0.1:*:vsx:*:*:*:*:*
cpe:2.3:a:checkpoint:next_generation:*:*:fp3:*:*:*:*:*
cpe:2.3:a:checkpoint:ng-ai:r54:*:*:*:*:*:*:*
cpe:2.3:a:checkpoint:ng-ai:r55:*:*:*:*:*:*:*
cpe:2.3:a:checkpoint:vpn-1:vsx_2.0.1:*:*:*:*:*:*:*
cpe:2.3:a:checkpoint:vpn-1:vsx_ng_with_application_intelligence:*:*:*:*:*:*:*
EPSS
Процентиль: 91%
0.06452
Низкий
10 Critical
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
больше 3 лет назад
Buffer overflow in the ISAKMP functionality for Check Point VPN-1 and FireWall-1 NG products, before VPN-1/FireWall-1 R55 HFA-03, R54 HFA-410 and NG FP3 HFA-325, or VPN-1 SecuRemote/SecureClient R56, may allow remote attackers to execute arbitrary code during VPN tunnel negotiation.
EPSS
Процентиль: 91%
0.06452
Низкий
10 Critical
CVSS2
Дефекты
NVD-CWE-Other