Vulnerability Description
Buffer overflow in the ISAKMP functionality for Check Point VPN-1 and FireWall-1 NG products, before VPN-1/FireWall-1 R55 HFA-03, R54 HFA-410 and NG FP3 HFA-325, or VPN-1 SecuRemote/SecureClient R56, may allow remote attackers to execute arbitrary code during VPN tunnel negotiation.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Checkpoint | Firewall-1 | All versions |
| Checkpoint | Next Generation | All versions |
| Checkpoint | Ng-Ai | r54 |
| Checkpoint | Vpn-1 | vsx_2.0.1 |
References
- http://www.checkpoint.com/techsupport/alerts/ike_vpn.htmlPatchVendor Advisory
- http://www.securityfocus.com/bid/10273PatchVendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/16060
- http://www.checkpoint.com/techsupport/alerts/ike_vpn.htmlPatchVendor Advisory
- http://www.securityfocus.com/bid/10273PatchVendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/16060
FAQ
What is CVE-2004-0469?
CVE-2004-0469 is a vulnerability with a CVSS score of 10.0 (HIGH). Buffer overflow in the ISAKMP functionality for Check Point VPN-1 and FireWall-1 NG products, before VPN-1/FireWall-1 R55 HFA-03, R54 HFA-410 and NG FP3 HFA-325, or VPN-1 SecuRemote/SecureClient R56, ...
How severe is CVE-2004-0469?
CVE-2004-0469 has been rated HIGH with a CVSS base score of 10.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2004-0469?
Check the references section above for vendor advisories and patch information. Affected products include: Checkpoint Firewall-1, Checkpoint Next Generation, Checkpoint Ng-Ai, Checkpoint Vpn-1.