Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-0469

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2004-0469
Last Modified 05 Sep 2008 04:38:30
Published 07 Jul 2004 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2004-0469

Summary

Buffer overflow in the ISAKMP functionality for Check Point VPN-1 and FireWall-1 NG products, before VPN-1/FireWall-1 R55 HFA-03, R54 HFA-410 and NG FP3 HFA-325, or VPN-1 SecuRemote/SecureClient R56, may allow remote attackers to execute arbitrary code during VPN tunnel negotiation.

Vulnerable Systems

Application

  • Checkpoint Firewall-1

  • Checkpoint Firewall-1 2.0

  • Checkpoint Firewall-1 2.0.1

  • Checkpoint Next Generation

  • Checkpoint Ng-ai R54

  • Checkpoint Ng-ai R55

  • Checkpoint Vpn-1 Vsx 2.0.1

  • Checkpoint Vpn-1 Vsx Ng With Application Intelligence


References

XF - vpn1-isakmp-bo(16060)

BID - 10273

CHECKPOINT - 20040504 ISAKMP Vulnerability


Last Updated: 27 May 2016 10:38:36