Check Point response to SecuRemote Topology Service Hostname Disclosure

...

Unsupported IPSO Firewall

The remote host is a Check Point or Nokia IPSO firewall that is no longer supported by its vendor. Lack of support implies that no new security patches for the product will be released by the vendor. As a result, it is likely to contain security vulnerabilities. C Tenable Network Security, Inc...

Check Point response to "DoS through hash table against Web Application Platforms" (CVE-2011-4838)

...

Check Point UTM-1 Edge and Safe 8.2.43 - Multiple Vulnerabilities

Check Point UTM-1 Edge and Safe 8.2.43 - Multiple Vulnerabilities source: https://www.securityfocus.com/bid/50189/info Check Point UTM-1 Edge and Safe are prone to multiple security vulnerabilities, including: 1. Multiple cross-site scripting vulnerabilities 2. Multiple HTML-injection...

Check Point UTM-1 Edge and Safe 8.2.43 - Multiple Vulnerabilities

source: https://www.securityfocus.com/bid/50189/info Check Point UTM-1 Edge and Safe are prone to multiple security vulnerabilities, including: 1. Multiple cross-site scripting vulnerabilities 2. Multiple HTML-injection vulnerabilities 3. Multiple cross-site request forgery vulnerabilities 4...

CVE-2011-1827

Multiple unspecified vulnerabilities in Check Point SSL Network Extender SNX, SecureWorkSpace, and Endpoint Security On-Demand, as distributed by SecurePlatform, IPSO6, Connectra, and VSX, allow remote attackers to execute arbitrary code via vectors involving a 1 ActiveX control or 2 Java applet...

Design/Logic Flaw

Multiple unspecified vulnerabilities in Check Point SSL Network Extender SNX, SecureWorkSpace, and Endpoint Security On-Demand, as distributed by SecurePlatform, IPSO6, Connectra, and VSX, allow remote attackers to execute arbitrary code via vectors involving a 1 ActiveX control or 2 Java applet...

CVE-2011-1827

Multiple unspecified vulnerabilities in Check Point SSL Network Extender SNX, SecureWorkSpace, and Endpoint Security On-Demand, as distributed by SecurePlatform, IPSO6, Connectra, and VSX, allow remote attackers to execute arbitrary code via vectors involving a 1 ActiveX control or 2 Java applet...

CVE-2011-1827

CVE-2011-1827 : Multiple vulnerabilities in Check Point components (SSL Network Extender/SNX, SecureWorkSpace, Endpoint Security On-Demand) allow remote code execution via a signed ActiveX control or Java applet. Exploitation, as described by SEC Consult, involves loading a malicious page or docu...

Check Point SSL Network Extender ActiveX Control Remote Code Execution

The version of the Check Point SSL Network Extender ActiveX control installed on the remote Windows host reportedly contains a remote code execution vulnerability. If an attacker can trick a user on the affected host into viewing a specially crafted HTML document, he can leverage this issue to...

Check Point Response to Apache HTTP Server CVE-2011-3192 Denial Of Service Vulnerability

...

CVE-2011-2664 Symlink Following and Second-Order Symlink Vulnerabilities in Multiple Check Point Security Management Products

======================================================================= title: Symlink Following and Second-Order Symlink Vulnerabilities in Multiple Check Point Security Management Products product: Check Point Security Management Multi-Domain Security Management / Provider-1 SmartCenter...

SEC Consult SA-20110810-0 :: Client-side remote file upload & command execution in Check Point SSL VPN On-Demand applications - CVE-2011-1827

SEC Consult Vulnerability Lab Security Advisory 20110810-0 ======================================================================= title: Client-side remote file upload & command execution product: Check Point SSL VPN On-Demand applications signed Java applet and ActiveX control SSL Network...

Check Point多域管理/Provider-1文件覆盖漏洞

CVE ID：CVE-2011-2664 Check Point Provider-1是一款安全管理解决方案，用来满足具有复杂安全策略需求企业的可扩展性要求。 Check Point多域管理/Provider-1存在未明错误，允许攻击者覆盖任意文件或修改SofaWare 管理服务器配置。 Check Point Provider-1 厂商解决方案 用户可参考如下供应商提供的安全公告获得补丁信息：...

Design/Logic Flaw

Unspecified vulnerability in Check Point Multi-Domain Management / Provider-1 NGX R65, R70, R71, and R75, and SmartCenter during installation on non-Windows machines, allows local users on the MDS system to overwrite arbitrary files via unknown vectors...

CVE-2011-2664

Unspecified vulnerability in Check Point Multi-Domain Management / Provider-1 NGX R65, R70, R71, and R75, and SmartCenter during installation on non-Windows machines, allows local users on the MDS system to overwrite arbitrary files via unknown vectors...

CVE-2011-2664

CVE-2011-2664 concerns a post-installation/installation-time vulnerability in Check Point’s Multi-Domain Management / Provider-1 and related SmartCenter components. An unprivileged local user can overwrite arbitrary files via a symlink-related weakness in a post-install script used to generate th...

CVE-2011-2664

Unspecified vulnerability in Check Point Multi-Domain Management / Provider-1 NGX R65, R70, R71, and R75, and SmartCenter during installation on non-Windows machines, allows local users on the MDS system to overwrite arbitrary files via unknown vectors...

Check Point Response to Stonesoft IPS Evasion Techniques published on June 14, 2011

...

Check Point's Response to "FireWall-1 RDP Bypass Vulnerability" (CA-2001-17)

...