38 matches found
EUVD-2005-2314
Malware in sbrugna...
EUVD-2003-0748
Malware in sbrugna...
EUVD-2001-1284
Malware in sbrugna...
CVE-2003-0757
Check Point FireWall-1 4.0 and 4.1 before SP5 allows remote attackers to obtain the IP addresses of internal interfaces via certain SecuRemote requests to TCP ports 256 or 264, which leaks the IP addresses in a reply packet...
CVE-2005-2313
Check Point SecuRemote NG with Application Intelligence R54 allows attackers to obtain credentials and gain privileges via unknown attack vectors...
CheckPoint Firewall-1 SecuRemote Topology Service Hostname Disclosure
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'CheckPoint Firewall-1 SecuRemote Topology Service Hostname Disclosure', 'Description' = %q This module sends a query to the port 264/TCP on...
Check Point Firewall-1 4.x SecuRemote Internal Interface Address Information Leakage Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/8524/info An information leakage issue has been discovered in Check Point Firewall-1. Because of this, an attacker may gain sensitive information about network resources. // / The syntax is: / / fw1getints start IP addres...
Check Point SecuRemote Hostname Information Disclosure
Sending a query to the Check Point SecuRemote service can be used to obtain the hostnames of the firewall and the logging or management station. In some environments this may be considered sensitive information that an attacker could obtain and use to mount further attacks. C Tenable Network...
Check Point response to SecuRemote Topology Service Hostname Disclosure
...
CheckPoint Firewall-1 SecuRemote Topology Service Hostname Disclosure
This module sends a query to the port 264/TCP on CheckPoint Firewall-1 firewalls to obtain the firewall name and management station such as SmartCenter name via a pre-authentication request. The string returned is the CheckPoint Internal CA CN for SmartCenter and the firewall host. Whilst...
CVE-2008-1397
Check Point VPN-1 Power/UTM, with NGX R60 through R65 and NG AI R55 software, allows remote authenticated users to cause a denial of service site-to-site VPN tunnel outage, and possibly intercept network traffic, by configuring the local RFC1918 IP address to be the same as one of this tunnel's...
CVE-2008-1397
Check Point VPN-1 Power/UTM, with NGX R60 through R65 and NG AI R55 software, allows remote authenticated users to cause a denial of service site-to-site VPN tunnel outage, and possibly intercept network traffic, by configuring the local RFC1918 IP address to be the same as one of this tunnel's...
CheckPoint SecuRemote / Secure Client weak permissions
Cached logon credentials are stored in registry key accessed by everyone group...
Design/Logic Flaw
The Auto Local Logon feature in Check Point VPN-1 SecuRemote/SecureClient NGX R60 and R56 for Windows caches credentials under the Checkpoint\SecuRemote registry key, which has Everyone/Full Control permissions, which allows local users to gain privileges by reading and reusing the credentials...
CVE-2008-0662
The Auto Local Logon feature in Check Point VPN-1 SecuRemote/SecureClient NGX R60 and R56 for Windows caches credentials under the Checkpoint\SecuRemote registry key, which has Everyone/Full Control permissions, which allows local users to gain privileges by reading and reusing the credentials...
CVE-2008-0662
The Auto Local Logon feature in Check Point VPN-1 SecuRemote/SecureClient NGX R60 and R56 for Windows caches credentials under the Checkpoint\SecuRemote registry key, which has Everyone/Full Control permissions, which allows local users to gain privileges by reading and reusing the credentials...
CVE-2008-0662
CVE-2008-0662 affects Check Point VPN-1 SecuRemote/SecureClient NGX for Windows (R60 and R56). The Auto Local Logon feature caches credentials in the Checkpoint\SecuRemote registry key which has Everyone/Full Control permissions, enabling local users to read and reuse credentials to gain privileg...
PT-2008-2284 · Check Point · Check Point Vpn-1 Securemote/Secureclient
Name of the Vulnerable Software and Affected Versions: Check Point VPN-1 SecuRemote/SecureClient NGX versions R56 and R60 Description: The issue concerns the Auto Local Logon feature, which caches credentials in a registry key with inadequate permissions, allowing local users to read and reuse...
Check Point FireWall-1 (FW-1) SecureRemote (SecuRemote) Detection
The remote host seems to be a Check Point FireWall-1 FW-1 running SecureRemote SecuRemote. SPDX-FileCopyrightText: 2005 SecuriTeam SPDX-FileCopyrightText: New / improved code since 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the...
Checkpoint SecuRemote information leakage
The remote host seems to be a Checkpoint FireWall-1 running SecuRemote. The SecuRemote service contains a vulnerability that allows attackers to gain information about the hosts, networks, and users configured on the Firewall. This will enable attackers to focus their attack strategy. You should...