漏洞信息详情
Check Point VPN-1 IP地址崩溃拒绝服务漏洞
- CNNVD编号:CNNVD-200803-328
- 危害等级: 中危
- CVE编号: CVE-2008-1397
- 漏洞类型: 权限许可和访问控制
- 发布时间: 2008-03-19
- 威胁类型: 远程
- 更新时间: 2008-09-05
- 厂 商: checkpoint
- 漏洞来源: of PureSecurity discovered this issue and acknowlEdges the aid of Mitchell Woodward, acknowlEdges Michael Kapelevich and the Check Point Security Alert team.');">Robert Mitchell <>
漏洞简介
Check Point VPN-1 Power/UTM, 及 NGX R60至 R65 和 NG AI R55 软件会允许远程授权用户通过把本地RFC1918 IP地址与tunnel的 终端 RFC1918 IP 地址设置成一样,然后运行SecuRemote使其与另一终端的网络界面相连接,来造成拒绝服务(站到站的VPN 隧道损耗)。
漏洞公告
参考网址
US-CERT Vulnerability Note: VU#992585
名称: VU#992585
链接:http://www.kb.cert.org/vuls/id/992585
来源: supportcenter.checkpoint.com
链接:https://supportcenter.checkpoint.com/supportcenter/portal?solutionid=sk34579
来源: BID
名称: 28299
链接:http://www.securityfocus.com/bid/28299
来源: MISC
链接:http://www.puresecurity.com.au/files/PureSecurity%20VPN-1%20DoS_Spoofing%20Attack%20against%20VPN%20tunnels.pdf
来源: SECUNIA
名称: 29394
链接:http://secunia.com/advisories/29394
来源: XF
名称: vpn1-ipaddress-dos(41260)
链接:http://xforce.iss.net/xforce/xfdb/41260
来源: SECTRACK
名称: 1019666
链接:http://www.securitytracker.com/id?1019666
来源: VUPEN
名称: ADV-2008-0953
链接:http://www.frsirt.com/english/advisories/2008/0953/references
来源: MISC
链接:http://puresecurity.com.au/index.php?action=fullnews&id=5
受影响实体
- Checkpoint Vpn-1_power_utm_with_ngx:R65
- Checkpoint Vpn-1_power_utm:Ngx_r65_with_messaging_security
- Checkpoint Vpn-1_firewall-1:Ng_ai_r55
- Checkpoint Vpn-1:Ngx_r60:Pro
- Checkpoint Check_point_vpn-1_pro:Ngx_r62_ga
补丁
暂无
![weinxin](http://zone.ci/zone_ci_images/zone.ci.png)
评论