65 matches found
📄 Check Point VPN IKE Logic Flaw
This is a Python script attempting to exploit a vulnerability in Check Point VPN by sending a malformed IKESAINIT packet to UDP port 500, detecting whether the target responds as an indicator of exploitability, then executing a MITM attack to intercept IKE packets between a victim and a VPN...
Critical Check Point VPN Zero-Day Exploited in the Wild (CVE-2026-50751)
Overview On June 8, 2026, Check Point published a security advisory for CVE-2026-50751, a critical authentication bypass vulnerability affecting Check Point Remote Access VPN, Mobile Access, and Spark Firewall products. The vulnerability affects deployments configured to use the deprecated IKEv1...
CVE-2026-50571
creationtimestamp| type| source ---|---|--- 2026-06-08 12:27:23+00:00| seen| https://www.cert.at/de/warnungen/2026/6/angriffe-gegen-checkpoint-vpn-losungen-hotfix-verfugbar...
EUVD-2000-0803
Malware in sbrugna...
EUVD-2005-4088
Malware in sbrugna...
EUVD-2008-5819
Malware in sbrugna...
EUVD-2004-0468
Malware in sbrugna...
EUVD-2000-0800
Malware in sbrugna...
EUVD-2001-1157
Malware in sbrugna...
EUVD-2000-0801
Malware in sbrugna...
EUVD-2007-3474
Malware in sbrugna...
EUVD-2008-1401
Malware in sbrugna...
Check Point IPSec VPN 安全漏洞
Check Point IPSec VPN is a suite of VPN Virtual Private Network software based on the IPSec protocol from Check Point, Israel. Check Point IPSec VPN suffers from a security vulnerability that stems from susceptibility to brute force attacks on usernames and passwords...
CVE-2019-8456
Check Point IKEv2 IPsec VPN up to R80.30, in some less common conditions, may allow an attacker with knowledge of the internal configuration and setup to successfully connect to a site-to-site VPN server...
Check Point VPN-1 UTM Edge NGX 7.0.48x - Login Page Cross-Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/28116/info Check Point VPN-1 UTM Edge is prone to a cross-site scripting vulnerability because it fails to adequately sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in t...
Checkpoint VPN-1 PAT信息泄露漏洞
CVECAN ID: CVE-2008-5849 CheckPoint防火墙/VPN解决方案可为组织提供网络架构和信息安全保护。 对于启用了端口地址翻译(PAT)的CheckPoint VPN-1防火墙,如果远程攻击者向防火墙的18264/tcp端口发送设置有很低TTL值的报文的话,就可以触发ICMPTIMXCEEDINTRANS响应,而响应的封装IP报文中包含有内部IP地址,如下所示: 14:56:25.169480 IP tos 0xe0, ttl 255, id 21407, offset 0, flags none, proto: ICMP 1, length: 68...
Code injection
Check Point VPN-1 R55, R65, and other versions, when Port Address Translation PAT is used, allows remote attackers to discover intranet IP addresses via a packet with a small TTL, which triggers an ICMPTIMXCEEDINTRANS aka ICMP time exceeded in-transit response containing an encapsulated IP packet...
CVE-2008-5849
CVE-2008-5849 affects Check Point VPN-1 with Port Address Translation (PAT) enabled (notably Check Point VPN-1 R55 and R65). The issue is information disclosure: an attacker can remotely send a crafted packet to the firewall management port (18264/tcp) and trigger an ICMP TIMXCEED_INTRANS respons...
CVE-2008-5849
Check Point VPN-1 R55, R65, and other versions, when Port Address Translation PAT is used, allows remote attackers to discover intranet IP addresses via a packet with a small TTL, which triggers an ICMPTIMXCEEDINTRANS aka ICMP time exceeded in-transit response containing an encapsulated IP packet...
Check Point VPN-1 PAT Information Disclosure Vulnerability - Active Check
Check Point VPN-1 PAT is prone to an information disclosure vulnerability. SPDX-FileCopyrightText: 2008 Tim Brown and Portcullis Computer Security Ltd Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...