Check Point response to "Check Point Connection Table Leakage"

...

Wikipedia Remote Execution Vulnerability Patched

A serious remote code execution vulnerability was recently patched by the Wikimedia Foundation. The flaw could have put at risk any of the foundation’s sites running MediaWiki software, including Wikipedia. Researchers within Check Point Software Technologies’ Vulnerability Research Group...

MediaWiki Remote Code Execution vulnerability leaves Wikipedia open for Cyber attacks

The Encyclopedia giant WIKIPEDIA has been found vulnerable to remote code execution because of a critical flaw in the MediaWiki software. Wikipedia is a name which has become a major source of information for all of us. It has webpages on almost every topic you need to search. This giant is power...

CVE-2014-1673

Check Point Session Authentication Agent allows remote attackers to obtain sensitive information user credentials via unspecified vectors...

CVE-2014-1672

Check Point R75.47 Security Gateway and Management Server does not properly enforce Anti-Spoofing when the routing table is modified and the "Get - Interfaces with Topology" action is performed, which allows attackers to bypass intended access restrictions...

Spoofing

Check Point R75.47 Security Gateway and Management Server does not properly enforce Anti-Spoofing when the routing table is modified and the "Get - Interfaces with Topology" action is performed, which allows attackers to bypass intended access restrictions...

CVE-2014-1673

Check Point Session Authentication Agent allows remote attackers to obtain sensitive information user credentials via unspecified vectors...

CVE-2014-1672

CVE-2014-1672 affects Check Point R75.47 Security Gateway and Management Server. The issue is improper enforcement of anti-spoofing when the routing table is modified and the Get - Interfaces with Topology action is used, enabling attackers to bypass intended access restrictions. The NVD entry li...

CVE-2014-1672

Check Point R75.47 Security Gateway and Management Server does not properly enforce Anti-Spoofing when the routing table is modified and the "Get - Interfaces with Topology" action is performed, which allows attackers to bypass intended access restrictions...

CVE-2014-1673

Technical details (affected product/version, exploit vectors, root cause) are not provided in the connected documents. No public specifics available; monitor for updates.

CVE-2013-7311

The OSPF implementation in Check Point Gaia OS R75.X and R76 and IPSO OS 6.2 R75.X and R76 does not consider the possibility of duplicate Link State ID values in Link State Advertisement LSA packets before performing operations on the LSA database, which allows remote attackers to cause a denial ...

Design/Logic Flaw

The OSPF implementation in Check Point Gaia OS R75.X and R76 and IPSO OS 6.2 R75.X and R76 does not consider the possibility of duplicate Link State ID values in Link State Advertisement LSA packets before performing operations on the LSA database, which allows remote attackers to cause a denial ...

CVE-2013-7311

CVE-2013-0149 is referenced across multiple vendors in connected sources as an OSPF LSA handling vulnerability where the implementation fails to validate duplicate Link State ID values in LSA packets. This leads to remote DoS (routing disruption) and potential information disclosure through craft...

CVE-2013-7311

The OSPF implementation in Check Point Gaia OS R75.X and R76 and IPSO OS 6.2 R75.X and R76 does not consider the possibility of duplicate Link State ID values in Link State Advertisement LSA packets before performing operations on the LSA database, which allows remote attackers to cause a denial ...

CVE-2013-7304

Check Point Endpoint Security MI Server through R73 3.0.0 HFA2.5 does not configure X.509 certificate validation for client devices, which allows man-in-the-middle attackers to spoof SSL servers by presenting an arbitrary certificate during a session established by a client...

Design/Logic Flaw

Check Point Endpoint Security MI Server through R73 3.0.0 HFA2.5 does not configure X.509 certificate validation for client devices, which allows man-in-the-middle attackers to spoof SSL servers by presenting an arbitrary certificate during a session established by a client...

CVE-2013-7304

Check Point Endpoint Security MI Server through R73 3.0.0 HFA2.5 does not configure X.509 certificate validation for client devices, which allows man-in-the-middle attackers to spoof SSL servers by presenting an arbitrary certificate during a session established by a client...

CVE-2013-7304

CVE-2013-7304 affects Check Point Endpoint Security MI Server through R73 3.0.0 HFA2.5. The root cause is that X.509 certificate validation is not configured for client devices, enabling attackers to perform a man-in-the-middle by presenting an arbitrary certificate during a client session. No re...

Check Point response to Session Authentication Agent vulnerability

...

CVE-2013-5635

Media Encryption EPM Explorer in Check Point Endpoint Security through E80.50 does not properly maintain the state of password failures, which makes it easier for physically proximate attackers to bypass the device-locking protection mechanism by entering password guesses within multiple Unlock.e...