CVE-2014-8951

Unspecified vulnerability in Check Point Security Gateway R75, R76, R77, and R77.10, when UserCheck is enabled and the (1) Application Control, (2) URL Filtering, (3) DLP, (4) Threat Emulation, (5) Anti-Bot, or (6) Anti-Virus blade is used, allows remote attackers to cause a denial of service (fwk0 process crash, core dump, and restart) via a redirect to the UserCheck page.

Published: Nov 16, 2014
Updated: Apr 13, 2023
CVE: CVE-2014-8951
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 7.1
AV:N/AC:M/Au:N/C:N/I:N/A:C

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
checkpoint / security_gateway	r77	r77.x
checkpoint / security_gateway	r77.10	r77.10.x
checkpoint / security_gateway	r75	r75.x
checkpoint / security_gateway	r76	r76.x

http://secunia.com/advisories/58487
http://www.securityfocus.com/bid/67993
https://exchange.xforce.ibmcloud.com/vulnerabilities/98761
https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk100505

Vulnerability Database

CVE-2014-8951