Design/Logic Flaw

2011-10-0502:56:00

PRIOn knowledge base

www.prio-n.com

8.3 High

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.011 Low

EPSS

Percentile

84.0%

JSON

Multiple unspecified vulnerabilities in Check Point SSL Network Extender (SNX), SecureWorkSpace, and Endpoint Security On-Demand, as distributed by SecurePlatform, IPSO6, Connectra, and VSX, allow remote attackers to execute arbitrary code via vectors involving a (1) ActiveX control or (2) Java applet.

CPENameOperatorVersion
connectra_ngxeq66.1.114
connectra_ngxeq66.1.110114
vpn-1eq75.0.114
vpn-1eq71.30.114
vpn-1eq65.70.114
vpn-1eq70.40.114
vpn-1_firewall-1_vsxeq65.20.114
vpn-1_firewall-1_vsxeq67.0.114

Name	Operator	Version
connectra_ngx	eq	66.1.114
connectra_ngx	eq	66.1.110114
vpn-1	eq	75.0.114
vpn-1	eq	71.30.114
vpn-1	eq	65.70.114
vpn-1	eq	70.40.114
vpn-1_firewall-1_vsx	eq	65.20.114
vpn-1_firewall-1_vsx	eq	67.0.114