Vulnerability Description
Check Point Firewall-1 4.1 up to NG AI R55 allows remote attackers to obtain potentially sensitive information by sending an Internet Key Exchange (IKE) with a certain Vendor ID payload that causes Firewall-1 to return a response containing version and other information.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Checkpoint | Firewall-1 | 4.0 |
References
- http://archives.neohapsis.com/archives/fulldisclosure/2004-06/0477.html
- http://www.nta-monitor.com/news/checkpoint2004/index.htm
- http://www.securityfocus.com/bid/10558
- https://exchange.xforce.ibmcloud.com/vulnerabilities/16434
- http://archives.neohapsis.com/archives/fulldisclosure/2004-06/0477.html
- http://www.nta-monitor.com/news/checkpoint2004/index.htm
- http://www.securityfocus.com/bid/10558
- https://exchange.xforce.ibmcloud.com/vulnerabilities/16434
FAQ
What is CVE-2004-2679?
CVE-2004-2679 is a vulnerability with a CVSS score of 7.8 (HIGH). Check Point Firewall-1 4.1 up to NG AI R55 allows remote attackers to obtain potentially sensitive information by sending an Internet Key Exchange (IKE) with a certain Vendor ID payload that causes Fi...
How severe is CVE-2004-2679?
CVE-2004-2679 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2004-2679?
Check the references section above for vendor advisories and patch information. Affected products include: Checkpoint Firewall-1.