Lucene search

[email protected]CVE-2008-1397

HistoryMar 20, 2008 - 12:44 a.m.

CVE-2008-1397

2008-03-2000:44:00

CWE-264

[email protected]

web.nvd.nist.gov

check point

vpn-1 power/utm

ngx r60

ngx r65

ng ai r55

denial of service

cve-2008-1397

security vulnerability

6.5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:P/I:P/A:P

6.3 Medium

AI Score

Confidence

High

0.007 Low

EPSS

Percentile

81.1%

JSON

Check Point VPN-1 Power/UTM, with NGX R60 through R65 and NG AI R55 software, allows remote authenticated users to cause a denial of service (site-to-site VPN tunnel outage), and possibly intercept network traffic, by configuring the local RFC1918 IP address to be the same as one of this tunnel’s endpoint RFC1918 IP addresses, and then using SecuRemote to connect to a network interface at the other endpoint.

Affected configurations

NVD

Node

checkpointcheck_point_vpn-1_proMatchngx_r61

checkpointcheck_point_vpn-1_proMatchngx_r62_ga

checkpointvpn-1Matchngx_r60pro

checkpointvpn-1_firewall-1Matchng_ai_r55

checkpointvpn-1_power_utmMatchngx_r65_with_messaging_security

checkpointvpn-1_power_utm_with_ngxMatchr65

CPENameOperatorVersion
checkpoint:check_point_vpn-1_procheckpoint check point vpn-1 proeqngx_r61
checkpoint:check_point_vpn-1_procheckpoint check point vpn-1 proeqngx_r62_ga
checkpoint:vpn-1checkpoint vpn-1eqngx_r60
checkpoint:vpn-1_firewall-1checkpoint vpn-1 firewall-1eqng_ai_r55
checkpoint:vpn-1_power_utmcheckpoint vpn-1 power utmeqngx_r65_with_messaging_security
checkpoint:vpn-1_power_utm_with_ngxcheckpoint vpn-1 power utm with ngxeqr65

CPE	Name	Operator	Version
checkpoint:check_point_vpn-1_pro	checkpoint check point vpn-1 pro	eq	ngx_r61
checkpoint:check_point_vpn-1_pro	checkpoint check point vpn-1 pro	eq	ngx_r62_ga
checkpoint:vpn-1	checkpoint vpn-1	eq	ngx_r60
checkpoint:vpn-1_firewall-1	checkpoint vpn-1 firewall-1	eq	ng_ai_r55
checkpoint:vpn-1_power_utm	checkpoint vpn-1 power utm	eq	ngx_r65_with_messaging_security
checkpoint:vpn-1_power_utm_with_ngx	checkpoint vpn-1 power utm with ngx	eq	r65

References

puresecurity.com.au/index.php?action=fullnews&id=5

secunia.com/advisories/29394

www.kb.cert.org/vuls/id/992585

www.puresecurity.com.au/files/PureSecurity%20VPN-1%20DoS_Spoofing%20Attack%20against%20VPN%20tunnels.pdf

www.securityfocus.com/bid/28299

www.securitytracker.com/id?1019666

www.vupen.com/english/advisories/2008/0953/references

exchange.xforce.ibmcloud.com/vulnerabilities/41260

supportcenter.checkpoint.com/supportcenter/portal?solutionid=sk34579

6.5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:P/I:P/A:P

6.3 Medium

AI Score

Confidence

High

0.007 Low

EPSS

Percentile

81.1%

JSON

Related for CVE-2008-1397

cvelist1 nvd1 prion1