securemote software vulnerabilities
vulnerabilities.aspcode.net
Searching securemote software vulnerabilities
Check Point VPN-1 4.1SP4 using SecuRemote retur
authentication
|
SecuRemote
|
different
|
depending
|
attackers
|
messages
|
invalid
|
conduct
|
attacks
|
prompts
|
returns
|
remote
|
method
|
easier
|
brute
|
which
|
makes
|
Point
|
Check
|
force
|
users
|
error
|
valid
|
using
|
being
|
VPN-1
|
41SP4
|
vary
|
used
|
Check Point VPN-1 4.1SP4 using SecuRemote returns different error messages for valid and invalid users, with prompts that vary depending on the authentication method being used, which makes it easier for remote attackers to conduct brute force attacks.
The design of the Internet Key Exchange (IKE) p
Exchange
|
Internet
|
design
|
Key
|
The design of the Internet Key Exchange (IKE) protocol, when using Aggressive Mode for shared secret authentication, does not encrypt initiator or responder identities during negotiation, which may allow remote attackers to determine valid usernames by (1) monitoring responses before the password is supplied or (2) sniffing, as originally reported for FireWall-1 SecuRemote.
Check Point FireWall-1 4.0 and 4.1 before SP5 a
FireWall-1
|
interfaces
|
SecuRemote
|
addresses
|
attackers
|
requests
|
internal
|
certain
|
obtain
|
before
|
allows
|
remote
|
Check
|
ports
|
Point
|
SP5
|
TCP
|
via
|
Check Point FireWall-1 4.0 and 4.1 before SP5 allows remote attackers to obtain the IP addresses of internal interfaces via certain SecuRemote requests to TCP ports 256 or 264, which leaks the IP addresses in a reply packet.
Buffer overflow in the ISAKMP functionality for
SecuRemote/SecureClient
|
VPN-1/FireWall-1
|
functionality
|
negotiation
|
FireWall-1
|
attackers
|
arbitrary
|
overflow
|
products
|
HFA-410
|
execute
|
HFA-325
|
before
|
ISAKMP
|
remote
|
during
|
HFA-03
|
Buffer
|
tunnel
|
Point
|
Check
|
VPN-1
|
allow
|
code
|
VPN
|
R55
|
R54
|
R56
|
may
|
FP3
|
Buffer overflow in the ISAKMP functionality for Check Point VPN-1 and FireWall-1 NG products, before VPN-1/FireWall-1 R55 HFA-03, R54 HFA-410 and NG FP3 HFA-325, or VPN-1 SecuRemote/SecureClient R56, may allow remote attackers to execute arbitrary code during VPN tunnel negotiation.
Check Point SecuRemote NG with Application Inte
Intelligence
|
Application
|
credentials
|
privileges
|
SecuRemote
|
attackers
|
unknown
|
vectors
|
attack
|
allows
|
obtain
|
Check
|
Point
|
gain
|
R54
|
via
|
Check Point SecuRemote NG with Application Intelligence R54 allows attackers to obtain credentials and gain privileges via unknown attack vectors.
Software vulnerabilities results 1 to 6 of 6
Page:
1