CyberSec.Space Logo
返回 CVE 瀏覽器

CVE-2004-0040

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.1000%
EPSS Percentile32.03th
Published2004年3月3日
Last Modified2026年4月16日

Vulnerability Description

Stack-based buffer overflow in Check Point VPN-1 Server 4.1 through 4.1 SP6 and Check Point SecuRemote/SecureClient 4.1 through 4.1 build 4200 allows remote attackers to execute arbitrary code via an ISAKMP packet with a large Certificate Request packet.

Affected Platforms (CPE)

📦
Checkpoint

Firewall 1

= 4.1
📦
Checkpoint

Firewall 1

= 4.1
📦
Checkpoint

Firewall 1

= 4.1
📦
Checkpoint

Firewall 1

= 4.1
📦
Checkpoint

Firewall 1

= 4.1
📦
Checkpoint

Firewall 1

= 4.1
📦
Checkpoint

Firewall 1

= 4.1
📦
Checkpoint

Firewall 1

= next_generation_fp0
📦
Checkpoint

Firewall 1

= next_generation_fp1
📦
Checkpoint

Vpn 1

= 4.1
📦
Checkpoint

Vpn 1

= next_generation_fp0
📦
Checkpoint

Vpn 1

= next_generation_fp1

References & Advisories

🔗 http://marc.info/?l=bugtraq&m=107604682227031&w=2
🔗 http://www.ciac.org/ciac/bulletins/o-073.shtml
🔗 http://www.kb.cert.org/vuls/id/873334
🔗 http://www.osvdb.org/3821
🔗 http://www.osvdb.org/4432
🔗 http://www.securityfocus.com/bid/9582
🔗 http://xforce.iss.net/xforce/alerts/id/163
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/14150

相關漏洞威脅

CVE-2018-010110.0

A vulnerability in the Secure Sockets Layer (SSL) VPN functionality of the Cisco Adaptive Security Appliance (ASA) Software could ...

CVE-2018-403110.0

An exploitable vulnerability exists in the safe browsing function of the CUJO Smart Firewall, version 7003. The flaw lies in the w...

CVE-2017-234310.0

The Integrated User Firewall (UserFW) feature was introduced in Junos OS version 12.1X47-D10 on the Juniper SRX Series devices to ...

CVE-2019-1302010.0

The fetch API in Tightrope Media Carousel before 7.1.3 has CarouselAPI/v0/fetch?url= SSRF. This has two potential areas for abuse....