SecurityTracker.com
    Home    |    View Topics    |    Search    |    Contact Us    |   

SecurityTracker
Archives


 


Category:   Application (VPN)  >   FireWall-1/VPN-1 Vendors:   Check Point
Check Point VPN-1 ISAKMP Buffer Overflow Lets Remote Users Execute Arbitrary Code
SecurityTracker Alert ID:  1010058
SecurityTracker URL:  http://securitytracker.com/id/1010058
CVE Reference:   CVE-2004-0469   (Links to External Site)
Updated:  May 14 2004
Original Entry Date:  May 4 2004
Impact:   Execution of arbitrary code via network, Root access via network, User access via network
Fix Available:  Yes  Vendor Confirmed:  Yes  
Version(s): NG, VSX, GX
Description:   A buffer overflow vulnerability was reported in Check Point VPN-1. A remote user may be able to execute arbitrary code on the VPN system.

Check Point reported a buffer overflow vulnerability in Check Point VPN-1 products in the processing of ISAKMP packets during negotiations of a VPN tunnel. A remote user can execute arbitrary code on the target system. In some cases, this may allow the remote user to further compromise the ostensibly protected network.

Impact:   A remote user can execute aribtrary code on the target system.
Solution:   Check Point indicates that the most recent Hotfix Accumulators (HFAs) address this issue and that Software Subscription customers can download the HFAs and individual fixes for VPN-1/FireWall-1 VSX, FireWall-1 GX and VPN-1 SecuRemote/SecureClient using the links listed below.

VPN-1/FireWall-1 NG with Application Intelligence R55
Hotfix HFA-03

R55 HFA-03 for IPSO
http://www.checkpoint.com/techsupport/downloadApp/displayDownloads.jsp?
the_product=VPN-1/FireWall-1&version_selected=NG%20with%20Application%20
Intelligence&os_selected=IPSO%203.7&patchlevel_selected=R55%20-%20Hotfixes

R55 HFA-03 for Linux
http://www.checkpoint.com/techsupport/downloadApp/displayDownloads.jsp?
the_product=VPN-1/FireWall-1&version_selected=NG%20with%20Application%20
Intelligence&os_selected=Linux&patchlevel_selected=R55%20-%20Hotfixes

R55 HFA-03 for SecurePlatform
http://www.checkpoint.com/techsupport/downloadApp/displayDownloads.jsp?
the_product=VPN-1/FireWall-1&version_selected=NG%20with%20Application%20
Intelligence&os_selected=SecurePlatform&patchlevel_selected=R55%20-%20Hotfixes

R55 HFA-03 for Solaris
http://www.checkpoint.com/techsupport/downloadApp/displayDownloads.jsp?
the_product=VPN-1/FireWall-1&version_selected=NG%20with%20Application%20
Intelligence&os_selected=Solaris%202.8&patchlevel_selected=R55%20-%20Hotfixes

R55 HFA-03 for Windows
http://www.checkpoint.com/techsupport/downloadApp/displayDownloads.jsp?
the_product=VPN-1/FireWall-1&version_selected=NG%20with%20Application%20
Intelligence&os_selected=Windows%20NT&patchlevel_selected=R55%20-%20Hotfixes


VPN-1/FireWall-1 NG with Application Intelligence R54 HFA-410

R54 HFA-410 for IPSO
http://www.checkpoint.com/techsupport/downloadApp/displayDownloads.jsp?
the_product=VPN-1/FireWall-1&version_selected=NG%20with%20Application%20
Intelligence&os_selected=IPSO%203.7&patchlevel_selected=R54%20-%20Hotfixes

R54 HFA-410 for Linux
http://www.checkpoint.com/techsupport/downloadApp/displayDownloads.jsp?
the_product=VPN-1/FireWall-1&version_selected=NG%20with%20Application%20
Intelligence&os_selected=Linux&patchlevel_selected=R54%20-%20Hotfixes

R54 HFA-410 for SecurePlatform
http://www.checkpoint.com/techsupport/downloadApp/displayDownloads.jsp?
the_product=VPN-1/FireWall-1&version_selected=NG%20with%20Application%20
Intelligence&os_selected=SecurePlatform&patchlevel_selected=R54%20-%20Hotfixes

R54 HFA-410 for Solaris
http://www.checkpoint.com/techsupport/downloadApp/displayDownloads.jsp?
the_product=VPN-1/FireWall-1&version_selected=NG%20with%20Application%20
Intelligence&os_selected=Solaris%202.8&patchlevel_selected=R54%20-%20Hotfixes

R54 HFA-410 for Windows
http://www.checkpoint.com/techsupport/downloadApp/displayDownloads.jsp?
the_product=VPN-1/FireWall-1&version_selected=NG%20with%20Application%20
Intelligence&os_selected=Windows%20NT&patchlevel_selected=R54%20-%20Hotfixes


VPN-1/FireWall-1 Next Generation FP3 HFA-325

FP3 HFA-325 for IPSO
http://www.checkpoint.com/techsupport/downloadApp/displayDownloads.jsp?
the_product=VPN-1/FireWall-1&version_selected=NG&os_selected=IPSO%203.6&
patchlevel_selected=FP3%20-%20Hotfixes

FP3 HFA-325 for Linux
http://www.checkpoint.com/techsupport/downloadApp/displayDownloads.jsp?
the_product=VPN-1/FireWall-1&version_selected=NG&os_selected=Linux&
patchlevel_selected=FP3%20-%20Hotfixes

FP3 HFA-325 for SecurePlatform
http://www.checkpoint.com/techsupport/downloadApp/displayDownloads.jsp?
the_product=VPN-1/FireWall-1&version_selected=NG&os_selected=SecurePlatform%20FP3%20Edition%202&
patchlevel_selected=FP3%20-%20Hotfixes

FP3 HFA-325 for Solaris
http://www.checkpoint.com/techsupport/downloadApp/displayDownloads.jsp?
the_product=VPN-1/FireWall-1&version_selected=NG&os_selected=Solaris%202.8&
patchlevel_selected=FP3%20-%20Hotfixes

FP3 HFA-325 for Windows
http://www.checkpoint.com/techsupport/downloadApp/displayDownloads.jsp?
the_product=VPN-1/FireWall-1&version_selected=NG&os_selected=Windows%20NT&
patchlevel_selected=FP3%20-%20Hotfixes


VPN-1/FireWall-1 VSX NG with Application Intelligence Hotfix

VSX NG with Application Intelligence HF for SecurePlatform
http://www.checkpoint.com/support/downloads/bin/vpn_des/vsx/ngai/linux/vpn_hf_vsx_ngai_april_2004_linux.zip


VPN-1/FireWall-1 VSX 2.0.1 Hotfix

VSX 2.0.1 HF for SecurePlatform
http://www.checkpoint.com/support/downloads/bin/vpn_des/vsx/2.0.1/linux/vpn_hf_vsx_201_april_2004_linux.zip


FireWall-1 GX 2.0 Hotfix

GX 2.0 HF for IPSO
http://www.checkpoint.com/support/downloads/bin/vpn_des/gx/v2.0/ipso/cp_ike_hotfix_apr_2004_gx20_ipso.gz

GX 2.0 HF for Linux
http://www.checkpoint.com/support/downloads/bin/vpn_des/gx/v2.0/linux/cp_ike_hotfix_apr_2004_gx20_linux.gz

GX 2.0 HF for SecurePlatform
http://www.checkpoint.com/support/downloads/bin/vpn_des/gx/v2.0/linux/cp_ike_hotfix_apr_2004_gx20_linux.gz

GX 2.0 HF for Solaris
http://www.checkpoint.com/support/downloads/bin/vpn_des/gx/v2.0/solaris/cp_ike_hotfix_apr_2004_gx20_solaris2.gz


VPN-1 SecuRemote/SecureClient NG with Application Intelligence R56

Free Public Downloads
http://www.checkpoint.com/techsupport/freedownloads.html


Customers without a valid Software Subscription contract, or those requesting a fix on VPN-1 4.1 SP6 should contact Check Point Technical Support for assistance:

http://www.checkpoint.com/techsupport/contacts.html

Vendor URL:  www.checkpoint.com/techsupport/alerts/ike_vpn.html (Links to External Site)
Cause:   Boundary error
Underlying OS:  Linux (Any), UNIX (Solaris - SunOS), Windows (NT), Windows (2000)

Message History:   None.


 Source Message Contents

Subject:  http://www.checkpoint.com/techsupport/alerts/ike_vpn.html


http://www.checkpoint.com/techsupport/alerts/ike_vpn.html

 > ISAKMP Vulnerability
 >
 > 4 May 2004

Check Point reported a buffer overflow vulnerability in Check Point VPN-1 products in the 
processing of ISAKMP packets during negotiations of a VPN tunnel.

Check Point indicates that the most recent Hotfix Accumulators (HFAs) address this issue 
and that Software Subscription customers can download the HFAs and individual fixes for 
VPN-1/FireWall-1 VSX, FireWall-1 GX and VPN-1 SecuRemote/SecureClient using the links 
listed below.

VPN-1/FireWall-1 NG with Application Intelligence R55
Hotfix HFA-03

     R55 HFA-03 for IPSO
http://www.checkpoint.com/techsupport/downloadApp/displayDownloads.jsp?
the_product=VPN-1/FireWall-1&version_selected=NG%20with%20Application%20
Intelligence&os_selected=IPSO%203.7&patchlevel_selected=R55%20-%20Hotfixes

     R55 HFA-03 for Linux
http://www.checkpoint.com/techsupport/downloadApp/displayDownloads.jsp?
the_product=VPN-1/FireWall-1&version_selected=NG%20with%20Application%20
Intelligence&os_selected=Linux&patchlevel_selected=R55%20-%20Hotfixes

     R55 HFA-03 for SecurePlatform
http://www.checkpoint.com/techsupport/downloadApp/displayDownloads.jsp?
the_product=VPN-1/FireWall-1&version_selected=NG%20with%20Application%20
Intelligence&os_selected=SecurePlatform&patchlevel_selected=R55%20-%20Hotfixes

     R55 HFA-03 for Solaris
http://www.checkpoint.com/techsupport/downloadApp/displayDownloads.jsp?
the_product=VPN-1/FireWall-1&version_selected=NG%20with%20Application%20
Intelligence&os_selected=Solaris%202.8&patchlevel_selected=R55%20-%20Hotfixes

     R55 HFA-03 for Windows
http://www.checkpoint.com/techsupport/downloadApp/displayDownloads.jsp?
the_product=VPN-1/FireWall-1&version_selected=NG%20with%20Application%20
Intelligence&os_selected=Windows%20NT&patchlevel_selected=R55%20-%20Hotfixes


VPN-1/FireWall-1 NG with Application Intelligence R54 HFA-410

     R54 HFA-410 for IPSO
http://www.checkpoint.com/techsupport/downloadApp/displayDownloads.jsp?
the_product=VPN-1/FireWall-1&version_selected=NG%20with%20Application%20
Intelligence&os_selected=IPSO%203.7&patchlevel_selected=R54%20-%20Hotfixes

     R54 HFA-410 for Linux
http://www.checkpoint.com/techsupport/downloadApp/displayDownloads.jsp?
the_product=VPN-1/FireWall-1&version_selected=NG%20with%20Application%20
Intelligence&os_selected=Linux&patchlevel_selected=R54%20-%20Hotfixes

     R54 HFA-410 for SecurePlatform
http://www.checkpoint.com/techsupport/downloadApp/displayDownloads.jsp?
the_product=VPN-1/FireWall-1&version_selected=NG%20with%20Application%20
Intelligence&os_selected=SecurePlatform&patchlevel_selected=R54%20-%20Hotfixes

     R54 HFA-410 for Solaris
http://www.checkpoint.com/techsupport/downloadApp/displayDownloads.jsp?
the_product=VPN-1/FireWall-1&version_selected=NG%20with%20Application%20
Intelligence&os_selected=Solaris%202.8&patchlevel_selected=R54%20-%20Hotfixes

     R54 HFA-410 for Windows
http://www.checkpoint.com/techsupport/downloadApp/displayDownloads.jsp?
the_product=VPN-1/FireWall-1&version_selected=NG%20with%20Application%20
Intelligence&os_selected=Windows%20NT&patchlevel_selected=R54%20-%20Hotfixes


VPN-1/FireWall-1 Next Generation FP3 HFA-325

     FP3 HFA-325 for IPSO
http://www.checkpoint.com/techsupport/downloadApp/displayDownloads.jsp?
the_product=VPN-1/FireWall-1&version_selected=NG&os_selected=IPSO%203.6&
patchlevel_selected=FP3%20-%20Hotfixes

     FP3 HFA-325 for Linux
http://www.checkpoint.com/techsupport/downloadApp/displayDownloads.jsp?
the_product=VPN-1/FireWall-1&version_selected=NG&os_selected=Linux&
patchlevel_selected=FP3%20-%20Hotfixes

     FP3 HFA-325 for SecurePlatform
http://www.checkpoint.com/techsupport/downloadApp/displayDownloads.jsp?
the_product=VPN-1/FireWall-1&version_selected=NG&os_selected=SecurePlatform%20FP3%20Edition%202&
patchlevel_selected=FP3%20-%20Hotfixes

     FP3 HFA-325 for Solaris
http://www.checkpoint.com/techsupport/downloadApp/displayDownloads.jsp?
the_product=VPN-1/FireWall-1&version_selected=NG&os_selected=Solaris%202.8&
patchlevel_selected=FP3%20-%20Hotfixes

     FP3 HFA-325 for Windows
http://www.checkpoint.com/techsupport/downloadApp/displayDownloads.jsp?
the_product=VPN-1/FireWall-1&version_selected=NG&os_selected=Windows%20NT&
patchlevel_selected=FP3%20-%20Hotfixes


VPN-1/FireWall-1 VSX NG with Application Intelligence Hotfix

     	VSX NG with Application Intelligence HF for SecurePlatform
http://www.checkpoint.com/support/downloads/bin/vpn_des/vsx/ngai/linux/vpn_hf_vsx_ngai_april_2004_linux.zip


VPN-1/FireWall-1 VSX 2.0.1 Hotfix

     VSX 2.0.1 HF for SecurePlatform
http://www.checkpoint.com/support/downloads/bin/vpn_des/vsx/2.0.1/linux/vpn_hf_vsx_201_april_2004_linux.zip


FireWall-1 GX 2.0 Hotfix

     GX 2.0 HF for IPSO
http://www.checkpoint.com/support/downloads/bin/vpn_des/gx/v2.0/ipso/cp_ike_hotfix_apr_2004_gx20_ipso.gz

     GX 2.0 HF for Linux
http://www.checkpoint.com/support/downloads/bin/vpn_des/gx/v2.0/linux/cp_ike_hotfix_apr_2004_gx20_linux.gz

     GX 2.0 HF for SecurePlatform
http://www.checkpoint.com/support/downloads/bin/vpn_des/gx/v2.0/linux/cp_ike_hotfix_apr_2004_gx20_linux.gz

     GX 2.0 HF for Solaris
http://www.checkpoint.com/support/downloads/bin/vpn_des/gx/v2.0/solaris/cp_ike_hotfix_apr_2004_gx20_solaris2.gz


VPN-1 SecuRemote/SecureClient NG with Application Intelligence R56

     Free Public Downloads
http://www.checkpoint.com/techsupport/freedownloads.html


Customers without a valid Software Subscription contract, or those requesting a fix on 
VPN-1 4.1 SP6 should contact Check Point Technical Support for assistance:

http://www.checkpoint.com/techsupport/contacts.html

 
 


Go to the Top of This SecurityTracker Archive Page





Home   |    View Topics   |    Search   |    Contact Us

This web site uses cookies for web analytics. Learn More

Copyright 2021, SecurityGlobal.net LLC