9 matches found
IKEView.exe R60 - Stack Buffer Overflow (PoC)
IKEView.exe R60 - Stack Buffer Overflow PoC + Credits: hyp3rlinx + Website: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/AS-IKEVIEWR60-0914.txt Vendor: ================================ www.checkpoint.com http://pingtool.org/downloads/IKEView.exe Product:...
CVE-2008-1397
Check Point VPN-1 Power/UTM, with NGX R60 through R65 and NG AI R55 software, allows remote authenticated users to cause a denial of service site-to-site VPN tunnel outage, and possibly intercept network traffic, by configuring the local RFC1918 IP address to be the same as one of this tunnel's...
CVE-2008-1397
Affected product/versions: Check Point VPN-1 Power/UTM, NGX R60–R65 and NG AI R55. Vulnerability: remote authenticated users can cause a site-to-site VPN tunnel outage and possibly intercept traffic by configuring the local RFC1918 IP address to match an endpoint RFC1918 address, then using SecuR...
Design/Logic Flaw
The Auto Local Logon feature in Check Point VPN-1 SecuRemote/SecureClient NGX R60 and R56 for Windows caches credentials under the Checkpoint\SecuRemote registry key, which has Everyone/Full Control permissions, which allows local users to gain privileges by reading and reusing the credentials...
PT-2008-2284 · Check Point · Check Point Vpn-1 Securemote/Secureclient
Name of the Vulnerable Software and Affected Versions: Check Point VPN-1 SecuRemote/SecureClient NGX versions R56 and R60 Description: The issue concerns the Auto Local Logon feature, which caches credentials in a registry key with inadequate permissions, allowing local users to read and reuse...
CheckPoint Secure Platform Multiple Buffer Overflows
Hi all, we have published a paper about CheckPoint Firewall-1 vulnerabilities. The platform tested is the Secure Platform R60. We have found many buffer overflows. Most of them are located in command line utilities that can be exploited locally. A very few of them maybe can be exploited remotely,...
CVE-2005-2889
Check Point NGX R60 does not properly verify packets against the predefined service group "CIFS" rule, which allows remote attackers to bypass intended restrictions...
CVE-2005-2889
CVE-2005-2889 concerns Check Point NGX R60 where the CIFS service group implementation may mishandle traffic not designated as CIFS. The CERT/Check Point entry notes that the CIFS service group could allow unintended traffic to pass or cause legitimate traffic to be dropped, depending on rule con...
Rule bypassing in CheckPoint NGX R60
Hi folks, as playing a little bit with CheckPoint NGX new release R60, I noticed a serious problem with the predefined service group "CIFS". This group includes the services called "microsoft-ds" TCP Port 445 and the predefined service group "NBT", which includes some old smb-stuff. If I use this...