CVE-2011-1827

2011-10-0502:56:00

NVD-CWE-noinfo

[email protected]

web.nvd.nist.gov

cve-2011-1827

check point

ssl network extender

secureworkspace

endpoint security

remote code execution

activex

java applet

7.8 High

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.016 Low

EPSS

Percentile

87.4%

JSON

Multiple unspecified vulnerabilities in Check Point SSL Network Extender (SNX), SecureWorkSpace, and Endpoint Security On-Demand, as distributed by SecurePlatform, IPSO6, Connectra, and VSX, allow remote attackers to execute arbitrary code via vectors involving a (1) ActiveX control or (2) Java applet.

CPENameOperatorVersion
checkpoint:vpn-1_firewall-1_vsxcheckpoint vpn-1 firewall-1 vsxeqr65.20
checkpoint:connectra_ngxcheckpoint connectra ngxeqr66.1
checkpoint:vpn-1_firewall-1_vsxcheckpoint vpn-1 firewall-1 vsxeqr67
checkpoint:vpn-1checkpoint vpn-1eqr75
checkpoint:vpn-1checkpoint vpn-1eqr71.30
checkpoint:connectra_ngxcheckpoint connectra ngxeqr66.1n
checkpoint:vpn-1checkpoint vpn-1eqr65.70
checkpoint:vpn-1checkpoint vpn-1eqr70.40

CPE	Name	Operator	Version
checkpoint:vpn-1_firewall-1_vsx	checkpoint vpn-1 firewall-1 vsx	eq	r65.20
checkpoint:connectra_ngx	checkpoint connectra ngx	eq	r66.1
checkpoint:vpn-1_firewall-1_vsx	checkpoint vpn-1 firewall-1 vsx	eq	r67
checkpoint:vpn-1	checkpoint vpn-1	eq	r75
checkpoint:vpn-1	checkpoint vpn-1	eq	r71.30
checkpoint:connectra_ngx	checkpoint connectra ngx	eq	r66.1n
checkpoint:vpn-1	checkpoint vpn-1	eq	r65.70
checkpoint:vpn-1	checkpoint vpn-1	eq	r70.40