The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a database and tools to fix them.

Computer vulnerabilities of Check Point VPN-1

3 Check Point VPN-1 Power VSX: incorrect policy calculation
The policy computed by Check Point VPN-1 Power VSX allows an attacker to access to a resource, if it was previously used by another user...
sk92023, VIGILANCE-VUL-12396
1 Check Point Security Gateway: denial of service via SYN Flood
When the Check Point Security Gateway firewall receives more than 120 000 TCP SYN packets per second, it consumes numerous CPU resources...
sk86721, VIGILANCE-VUL-12090
1 TCP: packets injection via a firewall and a malware
When an attacker installed an unprivileged malware on a client computer, and when a firewall is located between this client and a TCP server, an attacker who is located on the internet can guess valid sequence numbers, in order to inject data in this TCP session...
FGA-2012-19, sk74640, VIGILANCE-VUL-11656
1 Check Point Firewall VPN-1: obtaining the hostname
An unauthenticated attacker can send a query to the SecuRemote Topology service, in order to obtain the name of the firewall...
sk69360, VIGILANCE-VUL-11424
2 Check Point Endpoint: privilege elevation
A local attacker can use a vulnerability of Check Point Endpoint Security Client, Endpoint Connect or SSL Network Extender, in order to gain privileges of the Windows system...
BID-46852, sk60510, VIGILANCE-VUL-10450
2 IDS, IPS: Advanced Evasion Techniques
Twenty three cases of standard techniques of packets variations are not detected by most IDS/IPS...
CVE-2010-0102, SBP-2010-31, SBP-2010-32, SBP-2010-33, SBP-2010-34, SBP-2010-35, VIGILANCE-VUL-10227
2 TCP: denial of service Sockstress
An attacker can use a small TCP Window, in order to overload a TCP server...
109444, 110132, 267088, 6759500, 967723, BID-31545, c01923093, CERTA-2009-ALE-017-003, cisco-sa-20090908-tcp24, cisco-sr-20081017-tcp, cpujul2012, CVE-2008-4609, FICORA #193744, HPSBMI02473, MS09-048, SA34, SA35, SA36, SA37, SA38, SA40, SA41, sk42723, sk42725, SOL10509, SOL7301, SOL9293, SSRT080138, SUSE-SA:2009:047, VIGILANCE-VUL-8139, VU#723308
2 TCP: denial of service Nkiller2
An attacker can use TCP Windows with a zero size in order to overload a TCP server...
109444, 110132, 267088, 6759500, 967723, CERTA-2009-ALE-017-003, cisco-sa-20090908-tcp24, cisco-sr-20081017-tcp, FICORA #193744, MS09-048, SA34, SA35, SA36, SA37, SA38, SA40, SA41, sk42723, sk42725, SOL10509, SOL7301, SOL9293, SUSE-SA:2009:047, VIGILANCE-VUL-8844
3 Nokia IPSO: denial of service via SecureXL and NAT
When SecureXL is enabled, an accepted and translated packet can stop the firewall...
VIGILANCE-VUL-8427
1 Checkpoint VPN-1: obtaining the private IP address
An attacker can obtain the private IP address of services with a PAT address translation...
BID-32306, CERTA-2009-AVI-004, CVE-2008-5849, sk36321, VIGILANCE-VUL-8255
Our database contains other pages. You can request a free trial to read them.