7.5
CVE-2004-0699
- EPSS 5.95%
- Veröffentlicht 28.09.2004 04:00:00
- Zuletzt bearbeitet 16.06.2026 22:06:11
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
Heap-based buffer overflow in ASN.1 decoding library in Check Point VPN-1 products, when Aggressive Mode IKE is implemented, allows remote attackers to execute arbitrary code by initiating an IKE negotiation and then sending an IKE packet with malformed ASN.1 data.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Checkpoint ≫ Firewall-1 Version4.1 Updatesp6
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 5.95% | 0.923 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 10 | 6.4 |
AV:N/AC:L/Au:N/C:P/I:P/A:P
|
http://secunia.com/advisories/12177/
http://securitytracker.com/alerts/2004/Jul/1010799.html
http://www.checkpoint.com/techsupport/alerts/asn1.html
http://www.ciac.org/ciac/bulletins/o-190.shtml
http://www.kb.cert.org/vuls/id/435358
http://www.osvdb.org/displayvuln.php?osvdb_id=8290
http://www.securityfocus.com/bid/10820
http://xforce.iss.net/xforce/alerts/id/178
https://exchange.xforce.ibmcloud.com/vulnerabilities/16824