返回 CVE 浏览器

CVE-2004-0469

CRITICAL

10.0

CVSS Severity Score

EPSS Score0.1870%

EPSS Percentile26.24th

Published2004年7月7日

Last Modified2026年4月16日

Vulnerability Description

Buffer overflow in the ISAKMP functionality for Check Point VPN-1 and FireWall-1 NG products, before VPN-1/FireWall-1 R55 HFA-03, R54 HFA-410 and NG FP3 HFA-325, or VPN-1 SecuRemote/SecureClient R56, may allow remote attackers to execute arbitrary code during VPN tunnel negotiation.

Affected Platforms (CPE)

📦

Checkpoint

Firewall 1

All versions

📦

Checkpoint

Firewall 1

= 2.0

📦

Checkpoint

Firewall 1

= 2.0.1

📦

Checkpoint

Next Generation

All versions

📦

Checkpoint

Ng Ai

= r54

📦

Checkpoint

Ng Ai

= r55

📦

Checkpoint

Vpn 1

= vsx_2.0.1

📦

Checkpoint

Vpn 1

= vsx_ng_with_application_intelligence

References & Advisories

🔗 http://www.checkpoint.com/techsupport/alerts/ike_vpn.html

🔗 http://www.securityfocus.com/bid/10273

🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/16060

🔗 http://www.checkpoint.com/techsupport/alerts/ike_vpn.html

🔗 http://www.securityfocus.com/bid/10273

🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/16060

相关漏洞威胁

CVE-2018-010110.0

A vulnerability in the Secure Sockets Layer (SSL) VPN functionality of the Cisco Adaptive Security Appliance (ASA) Software could ...

CVE-2018-403110.0

An exploitable vulnerability exists in the safe browsing function of the CUJO Smart Firewall, version 7003. The flaw lies in the w...

CVE-2017-234310.0

The Integrated User Firewall (UserFW) feature was introduced in Junos OS version 12.1X47-D10 on the Juniper SRX Series devices to ...

CVE-2019-1302010.0

The fetch API in Tightrope Media Carousel before 7.1.3 has CarouselAPI/v0/fetch?url= SSRF. This has two potential areas for abuse....