Vulnerability Bulletins |
Checkpoint. Alerta ISAKMP |
|
Vulnerability classification |
|
| Property | Value |
| Confidence level | Oficial |
| Impact | Obtener acceso |
| Dificulty | Experto |
| Required attacker level | Acceso remoto sin cuenta a un servicio exotico |
System information |
|
| Property | Value |
| Affected manufacturer | Networking |
| Affected software |
VPN-1/FireWall-1 4.1 (<=SP5a) VPN-1/FireWall-1 Next Generation FP0 VPN-1/FireWall-1 Next Generation FP1 |
Description |
|
| Un reciente aviso de seguridad sobre ISAKMP no existe en versiones recientes de VPN-1/FireWall-1 Next Generation (NG) FP2 y posteriores, incluyendo todas las versiones de Next Generation Application Intelligence (NG AI). El fallo tampoco existe en VPN-1/FireWall-1 4.1 SP6. Sin embargo el problema si existe en VPN-1/FireWall-1 4.1 SP5a y versiones anteriores, Next Generation FP0 y FP1. El problema hace referencia a un desbordamiento de búfer que podría permitir a un atacante comprometer remotamente el sistema. | |
Solution |
|
|
Actualización de software Check Point Next Generation Check Point NG with Application Intelligence R55 http://www.checkpoint.com/techsupport/ng_application_intelligence/r55_updates.html |
|
Standar resources |
|
| Property | Value |
| CVE | CAN-2004-0040 |
| BID | |
Other resources |
|
|
Checkpoint. ISAKMP Alert http://www.checkpoint.com/techsupport/alerts/41_isakmp.html |
|
Version history |
||
| Version | Comments | Date |
| 1.0 | Aviso emitido | 2004-02-09 |
| 1.1 | CAN añadido | 2004-06-30 |