Stack-based Buffer Overflow in Check Point VPN-1 Server and SecuRemote
CVE-2004-0040

Currently unrated

Key Information:

Vendor: Checkpoint
Status: Firewall-1; Vpn-1
Vendor: CVE Published:; 3 March 2004

Summary

A stack-based buffer overflow vulnerability exists in Check Point's VPN-1 Server and SecuRemote/SecureClient software. This issue arises when the systems process ISAKMP packets containing an excessively large Certificate Request. Exploiting this vulnerability could allow remote attackers to execute arbitrary code on affected systems, potentially leading to unauthorized access or complete system compromise.

References

http://marc.info/?l=bugtraq&m=107604682227031&w=2

mailing-listx_refsource_BUGTRAQ

http://www.kb.cert.org/vuls/id/873334

third-party-advisoryx_refsource_CERT-VN

http://www.securityfocus.com/bid/9582

vdb-entryx_refsource_BID

EPSS Score

25% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Mar 3, 2004
Vulnerability Reserved
Jan 7, 2004