Lucene search
K

1282 matches found

CheckPoint Security
CheckPoint Security
added 2008/07/05 9:0 p.m.26 views

Check Point response to DNS poisoning vulnerability CVE-2008-1447

...

5CVSS1.5AI score0.95182EPSS
Exploits20Affected Software1
CheckPoint Security
CheckPoint Security
added 2008/06/04 9:0 p.m.25 views

Check Point response to NET-SNMP vulnerability CVE-2008-0960

...

10CVSS1.8AI score0.6879EPSS
Exploits7Affected Software2
Check Point Advisories
Check Point Advisories
added 2008/04/30 12:0 a.m.0 views

Integrity Clientless Security (ICS) Update 3.7.221.0

Check Point Integrity ™ Clientless Security ICS protects your Web site by detecting and disabling spyware processes and allowing you to enforce security policies before a user logs onto your network. Using ICS you can prevent users with potentially harmful software from accessing your Web site, a...

6.8AI score
Exploits0
Check Point Advisories
Check Point Advisories
added 2008/04/15 12:0 a.m.2 views

Integrity Clientless Security (ICS) Update 3.7.220.0

Check Point Integrity ™ Clientless Security ICS protects your Web site by detecting and disabling spyware processes and allowing you to enforce security policies before a user logs onto your network. Using ICS you can prevent users with potentially harmful software from accessing your Web site, a...

6.8AI score
Exploits0
seebug.org
seebug.org
added 2008/03/23 12:0 a.m.29 views

Check Point VPN-1 IP地址碰撞拒绝服务漏洞

BUGTRAQ ID: 28299 CNCAN ID:CNCAN-2008032101 Check Point VPN-1是一款集成防火墙,防病毒,入侵防护的安全解决方案。 Check Point VPN-1防火墙存在一个信息泄漏问题,远程攻击者可以利用漏洞访问不可授权访问的敏感数据。 在如下情况下会触发此漏洞: 远程访问客户端C连接到网关A,一个站到站VPN通道存在于网关A和B之间,如果远程访问客户端c有一个IP地址也定义在网关B的加密域中,就会发生碰撞:在网关B的加密域中的如上所述的IP地址的新连接会不正确的传送到远程访问客户端C,存在连接不受影响。...

6.9AI score
Exploits0
NVD
NVD
added 2008/03/20 12:44 a.m.18 views

CVE-2008-1397

Check Point VPN-1 Power/UTM, with NGX R60 through R65 and NG AI R55 software, allows remote authenticated users to cause a denial of service site-to-site VPN tunnel outage, and possibly intercept network traffic, by configuring the local RFC1918 IP address to be the same as one of this tunnel's...

6.5CVSS6.3AI score0.02165EPSS
Exploits1References9
Prion
Prion
added 2008/03/20 12:44 a.m.14 views

Code injection

Check Point VPN-1 Power/UTM, with NGX R60 through R65 and NG AI R55 software, allows remote authenticated users to cause a denial of service site-to-site VPN tunnel outage, and possibly intercept network traffic, by configuring the local RFC1918 IP address to be the same as one of this tunnel's...

6.5CVSS6.8AI score0.02165EPSS
Exploits1References9Affected Software5
Cvelist
Cvelist
added 2008/03/20 12:0 a.m.19 views

CVE-2008-1397

Check Point VPN-1 Power/UTM, with NGX R60 through R65 and NG AI R55 software, allows remote authenticated users to cause a denial of service site-to-site VPN tunnel outage, and possibly intercept network traffic, by configuring the local RFC1918 IP address to be the same as one of this tunnel's...

6.3AI score0.02165EPSS
Exploits1References9
CVE
CVE
added 2008/03/20 12:0 a.m.43 views

CVE-2008-1397

Affected product/versions: Check Point VPN-1 Power/UTM, NGX R60–R65 and NG AI R55. Vulnerability: remote authenticated users can cause a site-to-site VPN tunnel outage and possibly intercept traffic by configuring the local RFC1918 IP address to match an endpoint RFC1918 address, then using SecuR...

6.5CVSS6.3AI score0.02165EPSS
Exploits1References9Affected Software5
CERT
CERT
added 2008/03/18 12:0 a.m.17 views

Check Point VPN-1 information disclosure vulnerability

Overview The Check Point VPN-1 firewall contains an information disclosure vulnerability that may allow an authenticated attacker to access data that they are not authorized to access. Description The Check Point VPN-1 is an application layer firewall that supports remote and site-to-site virtual...

6.8AI score
Exploits0References2
NVD
NVD
added 2008/03/08 12:44 a.m.16 views

CVE-2008-1208

Cross-site scripting XSS vulnerability in the login page in Check Point VPN-1 UTM Edge W Embedded NGX 7.0.48x allows remote attackers to inject arbitrary web script or HTML via the user parameter...

4.3CVSS5.7AI score0.01922EPSS
Exploits0References8
Prion
Prion
added 2008/03/08 12:44 a.m.12 views

Cross site scripting

Cross-site scripting XSS vulnerability in the login page in Check Point VPN-1 UTM Edge W Embedded NGX 7.0.48x allows remote attackers to inject arbitrary web script or HTML via the user parameter...

4.3CVSS6.1AI score0.01922EPSS
Exploits0References8Affected Software1
Cvelist
Cvelist
added 2008/03/08 12:0 a.m.19 views

CVE-2008-1208

Cross-site scripting XSS vulnerability in the login page in Check Point VPN-1 UTM Edge W Embedded NGX 7.0.48x allows remote attackers to inject arbitrary web script or HTML via the user parameter...

5.7AI score0.01922EPSS
Exploits0References8
CVE
CVE
added 2008/03/08 12:0 a.m.80 views

CVE-2008-1208

CVE-2008-1208 affects Check Point VPN-1 UTM Edge W Embedded NGX 7.0.48x. The vulnerability is a reflected XSS in the login page, exploitable by supplying a crafted value for the user parameter that causes arbitrary web script/HTML execution. Public sources consistently describe this as a login-pa...

4.3CVSS5.7AI score0.01922EPSS
Exploits0References8Affected Software1
exploitpack
exploitpack
added 2008/03/06 12:0 a.m.10 views

Check Point VPN-1 UTM Edge NGX 7.0.48x - Login Page Cross-Site Scripting

Check Point VPN-1 UTM Edge NGX 7.0.48x - Login Page Cross-Site Scripting source: https://www.securityfocus.com/bid/28116/info Check Point VPN-1 UTM Edge is prone to a cross-site scripting vulnerability because it fails to adequately sanitize user-supplied input. An attacker may leverage this issu...

6.8AI score
Exploits0
Exploit DB
Exploit DB
added 2008/03/06 12:0 a.m.28 views

Check Point VPN-1 UTM Edge NGX 7.0.48x - Login Page Cross-Site Scripting

source: https://www.securityfocus.com/bid/28116/info Check Point VPN-1 UTM Edge is prone to a cross-site scripting vulnerability because it fails to adequately sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user...

7AI score
Exploits0
Check Point Advisories
Check Point Advisories
added 2008/02/28 12:0 a.m.1 views

Integrity Clientless Security (ICS) Update 3.7.211.0

Check Point Integrity ™ Clientless Security ICS protects your Web site by detecting and disabling spyware processes and allowing you to enforce security policies before a user logs onto your network. Using ICS you can prevent users with potentially harmful software from accessing your Web site, a...

6.8AI score
Exploits0
NVD
NVD
added 2008/02/08 2:0 a.m.18 views

CVE-2008-0662

The Auto Local Logon feature in Check Point VPN-1 SecuRemote/SecureClient NGX R60 and R56 for Windows caches credentials under the Checkpoint\SecuRemote registry key, which has Everyone/Full Control permissions, which allows local users to gain privileges by reading and reusing the credentials...

7.8CVSS7.7AI score0.00337EPSS
Exploits0References8
Prion
Prion
added 2008/02/08 2:0 a.m.20 views

Design/Logic Flaw

The Auto Local Logon feature in Check Point VPN-1 SecuRemote/SecureClient NGX R60 and R56 for Windows caches credentials under the Checkpoint\SecuRemote registry key, which has Everyone/Full Control permissions, which allows local users to gain privileges by reading and reusing the credentials...

7.2CVSS7.1AI score0.00337EPSS
Exploits0References8Affected Software1
Cvelist
Cvelist
added 2008/02/08 1:0 a.m.25 views

CVE-2008-0662

The Auto Local Logon feature in Check Point VPN-1 SecuRemote/SecureClient NGX R60 and R56 for Windows caches credentials under the Checkpoint\SecuRemote registry key, which has Everyone/Full Control permissions, which allows local users to gain privileges by reading and reusing the credentials...

7.8AI score0.00337EPSS
Exploits0References8
Rows per page
Query Builder