Stack-based Buffer Overflow in Check Point VPN-1 Server and SecuRemote
CVE-2004-0040

Currently unrated

Key Information:

Vendor

Checkpoint
Status
Firewall-1
Vpn-1
Vendor
CVE Published:
3 March 2004

What is CVE-2004-0040?

A stack-based buffer overflow vulnerability exists in Check Point's VPN-1 Server and SecuRemote/SecureClient software. This issue arises when the systems process ISAKMP packets containing an excessively large Certificate Request. Exploiting this vulnerability could allow remote attackers to execute arbitrary code on affected systems, potentially leading to unauthorized access or complete system compromise.

References

http://marc.info/?l=bugtraq&m=107604682227031&w=2
mailing-listx_refsource_BUGTRAQ
http://www.kb.cert.org/vuls/id/873334
third-party-advisoryx_refsource_CERT-VN
http://www.securityfocus.com/bid/9582
vdb-entryx_refsource_BID

EPSS Score

25% chance of being exploited in the next 30 days.

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.