Stack-based buffer overflow in Check Point VPN-1 Server 4.1 through 4.1 SP6 and Check Point SecuRemote/SecureClient 4.1 through 4.1 build 4200 allows remote attackers to execute arbitrary code via an ISAKMP packet with a large Certificate Request packet.
Software | From | Fixed in |
---|---|---|
checkpoint / firewall-1 | 4.1 | 4.1.x |
checkpoint / firewall-1 | 4.1-sp1 | 4.1-sp1.x |
checkpoint / firewall-1 | 4.1-sp2 | 4.1-sp2.x |
checkpoint / firewall-1 | 4.1-sp3 | 4.1-sp3.x |
checkpoint / firewall-1 | 4.1-sp4 | 4.1-sp4.x |
checkpoint / firewall-1 | 4.1-sp5 | 4.1-sp5.x |
checkpoint / firewall-1 | 4.1-sp5a | 4.1-sp5a.x |
checkpoint / firewall-1 | next_generation_fp0 | next_generation_fp0.x |
checkpoint / firewall-1 | next_generation_fp1 | next_generation_fp1.x |
checkpoint / vpn-1 | 4.1-sp5a | 4.1-sp5a.x |
checkpoint / vpn-1 | next_generation_fp0 | next_generation_fp0.x |
checkpoint / vpn-1 | next_generation_fp1 | next_generation_fp1.x |