CVE-2004-0699

Currently unrated

Key Information:

Vendor: Checkpoint
Status: Firewall-1; Vpn-1
Vendor: CVE Published:; 28 September 2004

Summary

Heap-based buffer overflow in ASN.1 decoding library in Check Point VPN-1 products, when Aggressive Mode IKE is implemented, allows remote attackers to execute arbitrary code by initiating an IKE negotiation and then sending an IKE packet with malformed ASN.1 data.

References

http://www.checkpoint.com/techsupport/alerts/asn1.html

x_refsource_CONFIRM

http://securitytracker.com/alerts/2004/Jul/1010799.html

vdb-entryx_refsource_SECTRACK

http://www.kb.cert.org/vuls/id/435358

third-party-advisoryx_refsource_CERT-VN

EPSS Score

17% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Sep 28, 2004
Vulnerability Reserved
Jul 15, 2004