Description
Stack-based buffer overflow in Check Point VPN-1 Server 4.1 through 4.1 SP6 and Check Point SecuRemote/SecureClient 4.1 through 4.1 build 4200 allows remote attackers to execute arbitrary code via an ISAKMP packet with a large Certificate Request packet.
Affected products
- checkpoint / firewall-14.1 – 4.1
- checkpoint / firewall-14.1 – 4.1
- checkpoint / firewall-14.1 – 4.1
- checkpoint / firewall-14.1 – 4.1
- checkpoint / firewall-14.1 – 4.1
- checkpoint / firewall-14.1 – 4.1
- checkpoint / firewall-14.1 – 4.1
- checkpoint / firewall-1next_generation_fp0 – next_generation_fp0
- checkpoint / firewall-1next_generation_fp1 – next_generation_fp1
- checkpoint / vpn-14.1 – 4.1
- checkpoint / vpn-1next_generation_fp0 – next_generation_fp0
- checkpoint / vpn-1next_generation_fp1 – next_generation_fp1
References
- MAILING_LISThttp://marc.info/?l=bugtraq&m=107604682227031&w=2
- MISChttp://www.kb.cert.org/vuls/id/873334
- MISChttp://www.securityfocus.com/bid/9582
- MISChttp://www.osvdb.org/4432
- MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/14150
- MISChttp://www.ciac.org/ciac/bulletins/o-073.shtml
- MISChttp://www.osvdb.org/3821
- MISChttp://xforce.iss.net/xforce/alerts/id/163